Threat Intelligence Database

Multiple denial of service vulnerabilities have been identified in Dovecot, an IMAP and POP3 server for UNIX-like systems. These include issues in the ManageSieve plugin via a crafted SASL initial response during the AUTHENTICATE command, denial of service via a crafted message before authentication, and denial of service via a specially crafted NOOP command. Red Hat has released security updates addressing these vulnerabilities in Red Hat Enterprise Linux 9 and related variants.

Multiple denial of service vulnerabilities have been identified in Dovecot, an IMAP and POP3 server for UNIX-like systems. These include a denial of service via a crafted SASL initial response in the AUTHENTICATE command (CVE-2025-59032), denial of service via a crafted message before authentication (CVE-2026-27858), and denial of service via a specially crafted NOOP command (CVE-2026-27857). Red Hat has issued a security advisory with updates to address these issues in Red Hat Enterprise Linux 9.2 variants.

Multiple denial of service vulnerabilities have been identified in Dovecot, an IMAP and POP3 server for UNIX-like systems. These include a denial of service via a crafted SASL initial response in the AUTHENTICATE command (CVE-2025-59032), denial of service via a crafted message before authentication (CVE-2026-27858), and denial of service via a specially crafted NOOP command (CVE-2026-27857). Red Hat has issued an important security advisory providing updates to address these issues in Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. The advisory rates the impact as important and provides updated packages to remediate the vulnerabilities.

Multiple denial of service vulnerabilities have been identified in Dovecot, an IMAP and POP3 server for Linux and UNIX-like systems. These include issues in the ManageSieve SASL authentication process, crafted messages before authentication, and specially crafted NOOP commands. Red Hat has released security updates addressing these vulnerabilities in Red Hat Enterprise Linux 10 and related products. The vulnerabilities are rated as important by Red Hat Product Security.

Multiple denial of service vulnerabilities have been identified in Dovecot, an IMAP and POP3 server for UNIX-like systems. These include issues triggered by a crafted SASL initial response in the AUTHENTICATE command (CVE-2025-59032), a crafted message before authentication (CVE-2026-27858), and a specially crafted NOOP command (CVE-2026-27857). Red Hat has released security updates addressing these vulnerabilities in Red Hat Enterprise Linux 9 and related variants. The update is rated as Important by Red Hat Product Security.