Joined: 12 May 2004
|Posted: Fri Mar 20, 2020 7:26 pm Post subject: [ GLSA 202003-47 ] Exim
|Gentoo Linux Security Advisory
Title: Exim: Heap-based buffer overflow (GLSA 202003-47)
A vulnerability in Exim could allow a remote attacker to execute
Exim is a message transfer agent (MTA) designed to be a a highly
configurable, drop-in replacement for sendmail.
Vulnerable: < 4.92.3
Unaffected: >= 4.92.3
Architectures: All supported architectures
It was discovered that Exim incorrectly handled certain string
A remote attacker, able to connect to a vulnerable Exim instance, could
possibly execute arbitrary code with the privileges of the process or
cause a Denial of Service condition.
There is no known workaround at this time.
All Exim users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=mail-mta/exim-4.92.3"