CVE-2016-4983

Published: 05 November 2019

A postinstall script in the dovecot rpm allows local users to read the contents of newly created SSL/TLS key files.

Priority

Medium

CVSS 3 base score: 3.3

Status

Package Release Status
dovecot
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable

Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable