From: Ankur Tyagi <[email protected]> Vulnerable versions are 2.4.0, 2.4.1 according to the full disclosure[1]
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-30189 [1] https://seclists.org/fulldisclosure/2025/Oct/29 Signed-off-by: Ankur Tyagi <[email protected]> --- meta-networking/recipes-support/dovecot/dovecot_2.3.21.1.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta-networking/recipes-support/dovecot/dovecot_2.3.21.1.bb b/meta-networking/recipes-support/dovecot/dovecot_2.3.21.1.bb index 48e1e8a832..696257930a 100644 --- a/meta-networking/recipes-support/dovecot/dovecot_2.3.21.1.bb +++ b/meta-networking/recipes-support/dovecot/dovecot_2.3.21.1.bb @@ -73,3 +73,4 @@ FILES:${PN}-dev += "${libdir}/dovecot/libdovecot*.so" FILES:${PN}-dbg += "${libdir}/dovecot/*/.debug" CVE_STATUS[CVE-2016-4983] = "not-applicable-platform: Affects only postinstall script on specific distribution." +CVE_STATUS[CVE-2025-30189] = "cpe-incorrect: The current version (2.3.21.1) is not affected."
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#124399): https://lists.openembedded.org/g/openembedded-devel/message/124399 Mute This Topic: https://lists.openembedded.org/mt/117803251/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
