CVE-2016-4983

Summary

A postinstall script in the dovecot rpm allows local users to read the contents of newly created SSL/TLS key files.

Affected Software

VendorProductVersion RangeStatus
Fedoradovecot22dovecot22-2.2.25-3.1affected
Fedoradovecot22dovecot22-2.2.18-9.1affected
Fedoradovecot22dovecot22-2.2.13-3.7.1affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References