Lucene search
CloudLinuxCLSA-2023:1697482739HistoryOct 16, 2023 - 6:59 p.m.
exim: Fix of 2 CVEs
2023-10-1618:59:03
repo.cloudlinux.com
34
exim
spa authenticator
fix
cve-2023-42114
cve-2023-42116
out of bounds
write
read
unix
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
28.8%
- CVE-2023-42114: fix possible OOB read in SPA authenticator
- CVE-2023-42116: fix possible OOB write in SPA authenticator
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Centos | 6 | x86_64 | exim | < 4.92.3 | exim-4.92.3-3.el6.tuxcare.els4.src.rpm |
| Centos | 6 | x86_64 | exim-greylist | < 4.92.3 | exim-4.92.3-3.el6.tuxcare.els4.src.rpm |
| Centos | 6 | x86_64 | exim-mon | < 4.92.3 | exim-4.92.3-3.el6.tuxcare.els4.src.rpm |
| Centos | 6 | x86_64 | exim-mysql | < 4.92.3 | exim-4.92.3-3.el6.tuxcare.els4.src.rpm |
| Centos | 6 | x86_64 | exim-pgsql | < 4.92.3 | exim-4.92.3-3.el6.tuxcare.els4.src.rpm |
Related
debian
debian
[SECURITY] [DLA 3599-1] exim4 security update
2023-10-02 16:20:12
[SECURITY] [DSA 5512-1] exim4 security update
2023-10-02 14:31:15
openvas
openvas
Debian: Security Advisory (DLA-3599-1)
2023-10-04 00:00:00
Debian: Security Advisory (DSA-5512-1)
2023-10-03 00:00:00
openSUSE: Security Advisory for exim (openSUSE-SU-2023:0293-1)
2024-03-04 00:00:00
osv
osv
exim4 - security update
2023-10-02 00:00:00
exim4 - security update
2023-10-02 00:00:00
exim-4.96.1-1.1 on GA media
2024-06-15 00:00:00
nessus
nessus
Debian DLA-3599-1 : exim4 - LTS security update
2023-10-03 00:00:00
Exim < 4.96.1 Multiple Vulnerabilities
2023-10-20 00:00:00
ubuntu
ubuntu
Exim vulnerabilities
2023-10-04 00:00:00
veracode
veracode
Stack-based Overflow
2023-10-02 17:47:19
Information Disclosure
2023-10-02 17:47:18
cvelist
cvelist
vulnrichment
vulnrichment
redhatcve
redhatcve
CVE-2023-42116
2023-09-30 17:54:21
CVE-2023-42114
2023-09-30 18:24:17
alpinelinux
alpinelinux
CVE-2023-42116
2024-05-03 03:15:50
CVE-2023-42114
2024-05-03 03:15:49
nvd
nvd
CVE-2023-42114
2024-05-03 03:15:49
CVE-2023-42116
2024-05-03 03:15:50
debiancve
debiancve
CVE-2023-42116
2024-05-03 03:15:50
CVE-2023-42114
2024-05-03 03:15:49
wolfi
wolfi
CVE-2023-42116 vulnerabilities
2024-09-27 09:13:12
CVE-2023-42114 vulnerabilities
2024-09-27 09:13:12
ubuntucve
ubuntucve
CVE-2023-42116
2023-09-28 00:00:00
CVE-2023-42114
2023-09-28 00:00:00
zdi
zdi
cve
cve
CVE-2023-42116
2024-05-03 03:15:50
CVE-2023-42114
2024-05-03 03:15:49
cgr
cgr
CVE-2023-42116 vulnerabilities
2024-05-19 03:07:16
CVE-2023-42114 vulnerabilities
2024-05-19 03:07:16
redos
redos
ROS-20240730-09
2024-07-30 00:00:00
ROS-20240404-17
2024-04-04 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: exim-4.96.2-1.fc39
2023-11-03 18:58:44
[SECURITY] Fedora 38 Update: exim-4.96.1-1.fc38
2023-10-09 01:56:05
[SECURITY] Fedora 37 Update: exim-4.96.1-1.fc37
2023-10-09 01:27:27
gentoo
gentoo
Exim: Multiple Vulnerabilities
2024-02-18 00:00:00
malwarebytes
malwarebytes
Exim finally fixes 3 out of 6 vulnerabilities
2023-10-05 01:00:00
amazon
amazon
Important: exim
2023-10-12 15:48:00
thn
thn
New Critical Security Flaws Expose Exim Mail Servers to Remote Attacks
2023-09-30 04:14:00
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
28.8%
Related for CLSA-2023:1697482739