{"id":"MGASA-2022-0247","summary":"Updated cyrus-imapd packages fix security vulnerability","details":"Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of\nservice (multiple-minute daemon hang) via input that is mishandled during\nhash-table interaction. Because there are many insertions into a single\nbucket, strcmp becomes slow. (CVE-2021-33582)\n","modified":"2026-04-16T04:43:04.762637715Z","published":"2022-07-05T19:11:26Z","upstream":["CVE-2021-33582"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0247.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30079"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/WJZB45QBUN7CZFGOWCZYUYACNBTX7LVS/"},{"type":"WEB","url":"https://www.debian.org/lts/security/2022/dla-3052"}],"affected":[{"package":{"name":"cyrus-imapd","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/cyrus-imapd?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.5.15-3.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0247.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}