Dovecot 1.1 before 2.2.13 and dovecot-ee before 220.127.116.11 and 2.2.x before 18.104.22.168 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.
Publish Date : 2014-05-14 Last Update Date : 2017-01-06
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.