Errata overview
Errata ID 31
Date 2019-04-03
Source package dovecot
Fixed in version 1:2.2.27-3+deb9u4
This update addresses the following issue:
* A local attacker can cause a buffer overflow in the indexer-worker process,
  which can be used to elevate to root. This occurs because of missing checks
  in the fts and pop3-uidl components (CVE-2019-7524)
Additional notes
CVE ID CVE-2019-7524
UCS Bug number #49206