CLSA-2026-1778750122

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1778750122

Upstream

CVE-2026-27857

Published

2026-05-14T09:15:27Z

Modified

2026-06-04T09:47:21.922297966Z

Summary

Fix CVE(s): CVE-2026-27857

Details

SECURITY UPDATE: imap-login excessive memory usage DoS (ELSCVE-123445)
- debian/patches/CVE-2026-27857.patch: limit IMAP parser open list count via new imapparserparams struct; cap pre-auth IMAPLOGINLISTCOUNTLIMIT to 1. Squashes upstream commits 825bc297, d0f67b52, af1fb4da, 3435e0d44.
- CVE-2026-27857

References

https://errata.tuxcare.com/els_os/ubuntu20.04els/CLSA-2026-1778750122.html

Affected packages

TuxCare:Ubuntu:20.04

dovecot-auth-lua

Package

Name: dovecot-auth-lua
Purl: pkg:deb/tuxcare/dovecot-auth-lua?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-core

Package

Name: dovecot-core
Purl: pkg:deb/tuxcare/dovecot-core?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-dev

Package

Name: dovecot-dev
Purl: pkg:deb/tuxcare/dovecot-dev?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-gssapi

Package

Name: dovecot-gssapi
Purl: pkg:deb/tuxcare/dovecot-gssapi?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-imapd

Package

Name: dovecot-imapd
Purl: pkg:deb/tuxcare/dovecot-imapd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-ldap

Package

Name: dovecot-ldap
Purl: pkg:deb/tuxcare/dovecot-ldap?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-lmtpd

Package

Name: dovecot-lmtpd
Purl: pkg:deb/tuxcare/dovecot-lmtpd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-lucene

Package

Name: dovecot-lucene
Purl: pkg:deb/tuxcare/dovecot-lucene?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-managesieved

Package

Name: dovecot-managesieved
Purl: pkg:deb/tuxcare/dovecot-managesieved?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-mysql

Package

Name: dovecot-mysql
Purl: pkg:deb/tuxcare/dovecot-mysql?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-pgsql

Package

Name: dovecot-pgsql
Purl: pkg:deb/tuxcare/dovecot-pgsql?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-pop3d

Package

Name: dovecot-pop3d
Purl: pkg:deb/tuxcare/dovecot-pop3d?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-sieve

Package

Name: dovecot-sieve
Purl: pkg:deb/tuxcare/dovecot-sieve?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-solr

Package

Name: dovecot-solr
Purl: pkg:deb/tuxcare/dovecot-solr?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-sqlite

Package

Name: dovecot-sqlite
Purl: pkg:deb/tuxcare/dovecot-sqlite?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

dovecot-submissiond

Package

Name: dovecot-submissiond
Purl: pkg:deb/tuxcare/dovecot-submissiond?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"

mail-stack-delivery

Package

Name: mail-stack-delivery
Purl: pkg:deb/tuxcare/mail-stack-delivery?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.7.2-1ubuntu3.7+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1778750122.json"