CLSA-2026-1777978787

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1777978787

Upstream

CVE-2026-27857

Published

2026-05-05T10:59:54Z

Modified

2026-06-01T00:33:23.719908646Z

Summary

dovecot: Fix of CVE-2026-27857

Details

CVE-2026-27857: limit the number of open IMAP parser lists in imap-login to prevent excessive memory usage from deeply nested parentheses (e.g. NOOP (((...))))

References

https://errata.tuxcare.com/els_os/centos8.5els/CLSA-2026-1777978787.html

Affected packages

TuxCare:CentOS:8.5 / dovecot

Package

Name: dovecot
Purl: pkg:rpm/tuxcare/dovecot?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.8-9.el8.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json"

TuxCare:CentOS:8.5 / dovecot-devel

Package

Name: dovecot-devel
Purl: pkg:rpm/tuxcare/dovecot-devel?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.8-9.el8.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json"

TuxCare:CentOS:8.5 / dovecot-mysql

Package

Name: dovecot-mysql
Purl: pkg:rpm/tuxcare/dovecot-mysql?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.8-9.el8.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json"

TuxCare:CentOS:8.5 / dovecot-pgsql

Package

Name: dovecot-pgsql
Purl: pkg:rpm/tuxcare/dovecot-pgsql?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.8-9.el8.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json"

TuxCare:CentOS:8.5 / dovecot-pigeonhole

Package

Name: dovecot-pigeonhole
Purl: pkg:rpm/tuxcare/dovecot-pigeonhole?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.8-9.el8.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2026-1777978787.json"