CVE-2026-27859

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Dovecot versions prior to 2.4.3-1.1

Description A mail message with a large number of RFC 2231 MIME parameters can cause excessive CPU usage in LMTP. A specially crafted message can lead to significant CPU time consumption during mail delivery. No publicly available exploits are known.

Recommendations Upgrade to version 2.4.3-1.1 or later. Limit RFC 2231 MIME parameters in mail messages using MTA capabilities.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

CVE-2026-27859

OESA-2026-1849

OPENSUSE-SU-2026:10442-1

OPENSUSE-SU-2026:20554-1

SUSE-SU-2026:21208-1

USN-8136-1

Affected Products

Dovecot

Linuxmint

Ubuntu

CVE-2026-27859

Weakness Enumeration

Related Identifiers

Affected Products

References · 56