Red Hat Product Errata RHSA-2026:17626 - Security Advisory Issued: 2026-05-14 Updated: 2026-05-14 RHSA-2026:17626 - Security Advisory Overview Updated Packages Synopsis Important: dovecot security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for dovecot is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032) dovecot: denial of service via crafted message before authentication (CVE-2026-27858) dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2452172 - CVE-2025-59032 dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command BZ - 2452175 - CVE-2026-27858 dovecot: denial of service via crafted message before authentication BZ - 2452179 - CVE-2026-27857 dovecot: denial of service via specially crafted NOOP command CVEs CVE-2025-59032 CVE-2026-27857 CVE-2026-27858 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM dovecot-2.3.16-15.el9_6.1.src.rpm SHA-256: a4216aff00ac43b94456a698ed72471cb9a7956dc86c1e1edc08b119fc535271 x86_64 dovecot-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: a266dc89513c7a4a229034ae9910915f006c77fff7815d34754aab7447e665bb dovecot-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: f941f803fe815e8bbc1a51a9690b222c80f9bcdfad2382a3d7d540dc1da52e58 dovecot-debugsource-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: af360bae653a8cb4aca155076decccebba94fa298545fc21e6a38c6c33a24707 dovecot-mysql-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: bdeab0d36b6235269b2a12ce3409215c8794c071eb52cfb5be232cf0dad5ec90 dovecot-mysql-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: afc0b21e22440cb65c66781c4ece337106cbe40d899b0a1b3a0d46233d9c235c dovecot-pgsql-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: e6d87fd9c798ab9a8b761e5b7b82fe5a3faa339d6e80f3a85945b70a29005616 dovecot-pgsql-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: c13811b26d9b7d9f3170d76e6900b68a66b8c44ee5974108d106e079b8b65c6c dovecot-pigeonhole-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: 84ea06a4a4d9866ec0f9bd3508bf5487208c5d3461d143692fa8c1acc8a9f3e0 dovecot-pigeonhole-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: daaa705c5c70be8cfece5abbbcac82de938fb082e70b42e3d5f0cbe115bff85d Red Hat Enterprise Linux Server - AUS 9.6 SRPM dovecot-2.3.16-15.el9_6.1.src.rpm SHA-256: a4216aff00ac43b94456a698ed72471cb9a7956dc86c1e1edc08b119fc535271 x86_64 dovecot-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: a266dc89513c7a4a229034ae9910915f006c77fff7815d34754aab7447e665bb dovecot-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: f941f803fe815e8bbc1a51a9690b222c80f9bcdfad2382a3d7d540dc1da52e58 dovecot-debugsource-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: af360bae653a8cb4aca155076decccebba94fa298545fc21e6a38c6c33a24707 dovecot-mysql-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: bdeab0d36b6235269b2a12ce3409215c8794c071eb52cfb5be232cf0dad5ec90 dovecot-mysql-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: afc0b21e22440cb65c66781c4ece337106cbe40d899b0a1b3a0d46233d9c235c dovecot-pgsql-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: e6d87fd9c798ab9a8b761e5b7b82fe5a3faa339d6e80f3a85945b70a29005616 dovecot-pgsql-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: c13811b26d9b7d9f3170d76e6900b68a66b8c44ee5974108d106e079b8b65c6c dovecot-pigeonhole-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: 84ea06a4a4d9866ec0f9bd3508bf5487208c5d3461d143692fa8c1acc8a9f3e0 dovecot-pigeonhole-debuginfo-2.3.16-15.el9_6.1.x86_64.rpm SHA-256: daaa705c5c70be8cfece5abbbcac82de938fb082e70b42e3d5f0cbe115bff85d Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM dovecot-2.3.16-15.el9_6.1.src.rpm SHA-256: a4216aff00ac43b94456a698ed72471cb9a7956dc86c1e1edc08b119fc535271 s390x dovecot-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 4b0e08a65d57bed907441be52213f9f345ba86fe4ae2b2768ecf8f892e5fec42 dovecot-debuginfo-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 48beb0d9a8aab38eb03bccf9be42c63c00bf42c9c7988f82d0368a6f32a9155d dovecot-debugsource-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 30d5892bd6561a18ee83913415939a77b993bd04953518ac912e6a173b2c663c dovecot-mysql-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 41f645bb4c027246b16ef7bfcf7c543216c5acbbd878403861ad21f014f22cb0 dovecot-mysql-debuginfo-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 675724e7adada03dba9a5c2228a0244a979c2187eff9905adb15a291af4e7b60 dovecot-pgsql-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 356b69ef90dce6389259d62c125fa2547efd4335b281aaf751a472b8da4c1cd2 dovecot-pgsql-debuginfo-2.3.16-15.el9_6.1.s390x.rpm SHA-256: f482163ddbf2c58993f7d443e59b0bfd8a803e2123be6e827524f9d12625509a dovecot-pigeonhole-2.3.16-15.el9_6.1.s390x.rpm SHA-256: f5216158fb0b46addc289be465f237c18b1c0e31a572765d1c39f1e9ac4bfc9d dovecot-pigeonhole-debuginfo-2.3.16-15.el9_6.1.s390x.rpm SHA-256: 9f68544eb8c29bf6acd5d76e17ffdc8e29d578a3f4871841a089348423f7a06a Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM dovecot-2.3.16-15.el9_6.1.src.rpm SHA-256: a4216aff00ac43b94456a698ed72471cb9a7956dc86c1e1edc08b119fc535271 ppc64le dovecot-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 5a20ce6b1f570b4207869b52b7ebfd93b75581ec3674222edebe150d6d601e5d dovecot-debuginfo-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 21b783893ca6538fe88b79ab1f1331fd2d8da1837f9caabefdc271e9a6ddb571 dovecot-debugsource-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 4bc6abb0bf5744b7e14d1a200d4f1c58de8ffcb172d1556d67c2d77ce5631ba4 dovecot-mysql-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 855c8b974bf8e5df3f84f736f1edf13b4f7f2a7ffa11a291a8e534589003a758 dovecot-mysql-debuginfo-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 2638be116f0dc8eb6eafe11c3a4bda63cd07c79c025d6895c3fd3c16eecc5c23 dovecot-pgsql-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: d7b78077fb50a2e524867a15d0f89985befaad79123b39739de87467dafecf42 dovecot-pgsql-debuginfo-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 89c59a6014c877afe59a6c15aab4e3215248424f66cc27eb01949b45862a83cf dovecot-pigeonhole-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 48af191b3766d6857eddcf8809b42b921a534a4bbb418268938134747975c9c4 dovecot-pigeonhole-debuginfo-2.3.16-15.el9_6.1.ppc64le.rpm SHA-256: 3a996f4bb1e22a8f79c83ae8e5b61bbda3b28ef88278df9c1d165ee8e4b6cbe6 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM dovecot-2.3.16-15.el9_6.1.src.rpm SHA-256: a4216aff00ac43b94456a698ed72471cb9a7956dc86c1e1edc08b119fc535271 aarch64 dovecot-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 2a811fceb503202c7efba9fb98a9ca35de9a6b3d8be7ec56412204c33242b3f8 dovecot-debuginfo-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: ac3c83bcc1c61b707eda7140a372ad6e911c40181247b737d569b2266885c3c2 dovecot-debugsource-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 08aad59b9d5ac5784f17cfdb31304a0141b33ab6fd0a3e586cb146b17ff0a976 dovecot-mysql-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 568fa7a91878613dc60bf85b7e57934154afbb94a8a9730f47ec21fd29101c8b dovecot-mysql-debuginfo-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: cef4b012c32595baa8aef54eccdd0538fac211757ab0efdc7cf2709034605cdd dovecot-pgsql-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: dde53cafe7859a17377398eb9b5fd1676d476ff2f88b7ecdbd5fd5ad2e0aad88 dovecot-pgsql-debuginfo-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 8c176f8aa5d152a2056ee870b3ad6f4fb0fddb1d62e258849cf35b7a747e29cc dovecot-pigeonhole-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 7d382edc3c5cef11279eecbeddda4402395d7b9d8081ae4b57ebf99357840265 dovecot-pigeonhole-debuginfo-2.3.16-15.el9_6.1.aarch64.rpm SHA-256: 8fc1408632ed5bcd398f3a635f7c56e8f2b432c7a2979a422fdf8adb60f8f96d Red Hat Enterpris