vulnerability
Oracle Linux: CVE-2024-34055: ELSA-2024-9195: cyrus-imapd security update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:N/A:C) | Jun 5, 2024 | Nov 21, 2024 | Dec 3, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:C)
Published
Jun 5, 2024
Added
Nov 21, 2024
Modified
Dec 3, 2025
Description
Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command.
A flaw was found in Cyrus IMAP before versions 3.8.3 and 3.10.x , and before 3.10.0-rc1. This flaw allows authenticated attackers to cause unbounded memory allocation by sending multiple LITERALs in a single command.
A flaw was found in Cyrus IMAP before versions 3.8.3 and 3.10.x , and before 3.10.0-rc1. This flaw allows authenticated attackers to cause unbounded memory allocation by sending multiple LITERALs in a single command.
Solutions
oracle-linux-upgrade-cyrus-imapdoracle-linux-upgrade-cyrus-imapd-libsoracle-linux-upgrade-cyrus-imapd-utilsoracle-linux-upgrade-perl-cyrus
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.