Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2154-2:E2943
HistoryJan 30, 2011 - 10:04 p.m.

[SECURITY] [DSA-2154-2] exim4 regression fix

2011-01-3022:04:57
lists.debian.org
11

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

JSON

Debian Security Advisory DSA-2154-2 [email protected]
http://www.debian.org/security/ Stefan Fritsch
January 30, 2011 http://www.debian.org/security/faq

Package : exim4
Vulnerability : privilege escalation / regression
Problem type : local
CVE Id(s) : CVE-2010-4345 CVE-2011-0017
Debian bug : 611572
Behaviour change : yes

The updated packages from DSA-2154-1 introduced a regression which
prevented unprivileged users from using 'exim4 -bf' to test filter
configurations. This update fixes this problem.

Please also read the information provided in DSA-2154-1 if you have
not done so already.

For the stable distribution (lenny), this problem has been fixed in
version 4.69-9+lenny4.

For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian5sparcexim4-daemon-heavy-dbg< 4.69-9+lenny3exim4-daemon-heavy-dbg_4.69-9+lenny3_sparc.deb
Debian5s390exim4-daemon-heavy-dbg< 4.69-9+lenny3exim4-daemon-heavy-dbg_4.69-9+lenny3_s390.deb
Debian5s390exim4-dbg< 4.69-9+lenny3exim4-dbg_4.69-9+lenny3_s390.deb
Debian5hppaexim4-daemon-heavy< 4.69-9+lenny3exim4-daemon-heavy_4.69-9+lenny3_hppa.deb
Debian5armexim4-base< 4.69-9+lenny3exim4-base_4.69-9+lenny3_arm.deb
Debian5powerpcexim4-base< 4.69-9+lenny3exim4-base_4.69-9+lenny3_powerpc.deb
Debian5armelexim4-daemon-heavy-dbg< 4.69-9+lenny3exim4-daemon-heavy-dbg_4.69-9+lenny3_armel.deb
Debian5alphaexim4-daemon-heavy-dbg< 4.69-9+lenny3exim4-daemon-heavy-dbg_4.69-9+lenny3_alpha.deb
Debian5i386exim4-daemon-heavy< 4.69-9+lenny3exim4-daemon-heavy_4.69-9+lenny3_i386.deb
Debian5amd64exim4-base< 4.69-9+lenny3exim4-base_4.69-9+lenny3_amd64.deb
Rows per page:
1-10 of 981

Related

openvas 22
debian 6
ubuntucve 2
nessus 17
osv 2
securityvulns 4
ubuntu 1
veracode 1
attackerkb 1
cve 2
debiancve 2
prion 2
redhat 1
oraclelinux 1
cert 1
cisa_kev 1
cvelist 2
freebsd 2
checkpoint_advisories 1
seebug 1
metasploit 1
centos 1
suse 1
packetstorm 1
exploitdb 1
gentoo 1
nmap 1
thn 1
openvas
openvas
Debian: Security Advisory (DSA-2154-1)
2023-03-08 00:00:00
Ubuntu Update for exim4 vulnerabilities USN-1060-1
2011-02-11 00:00:00
Ubuntu: Security Advisory (USN-1060-1)
2011-02-11 00:00:00
debian
debian
[SECURITY] [DSA-2154-1] exim4 security update
2011-01-30 10:41:58
[SECURITY] [DSA-2154-1] exim4 security update
2011-01-30 10:42:10
[SECURITY] [DSA-2154-2] exim4 regression fix
2011-01-30 22:05:08
ubuntucve
ubuntucve
CVE-2011-0017
2011-02-01 00:00:00
CVE-2010-4345
2010-12-14 00:00:00
nessus
nessus
Debian DSA-2154-1 : exim4 - privilege escalation
2011-01-31 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : exim4 vulnerabilities (USN-1060-1)
2011-02-11 00:00:00
FreeBSD : exim -- local privilege escalation (44ccfab0-3564-11e0-8e81-0022190034c0)
2011-02-14 00:00:00
osv
osv
exim4 - privilege escalation
2011-01-30 00:00:00
exim4 - remote code execution
2010-12-10 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA-2154-1] exim4 security update
2011-02-03 00:00:00
Exim memory corruption and remote code execution
2011-02-03 00:00:00
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-12 00:00:00
ubuntu
ubuntu
Exim vulnerabilities
2011-02-10 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:53:13
attackerkb
attackerkb
CVE-2010-4345
2010-12-14 00:00:00
cve
cve
CVE-2011-0017
2011-02-02 01:00:00
CVE-2010-4345
2010-12-14 16:00:00
debiancve
debiancve
CVE-2011-0017
2011-02-02 01:00:00
CVE-2010-4345
2010-12-14 16:00:00
prion
prion
Design/Logic Flaw
2011-02-02 01:00:00
Design/Logic Flaw
2010-12-14 16:00:00
redhat
redhat
(RHSA-2011:0153) Moderate: exim security update
2011-01-17 00:00:00
oraclelinux
oraclelinux
exim security update
2011-01-17 00:00:00
cert
cert
Exim alternate configuration privilege escalation vulnerability
2010-12-13 00:00:00
cisa_kev
cisa_kev
Exim Privilege Escalation Vulnerability
2022-03-25 00:00:00
cvelist
cvelist
CVE-2011-0017
2011-02-02 00:00:00
CVE-2010-4345
2010-12-14 15:00:00
freebsd
freebsd
exim -- local privilege escalation
2011-01-31 00:00:00
exim -- local privilege escalation
2010-12-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Exim Remote Code Execution (CVE-2010-4345)
2022-05-02 00:00:00
seebug
seebug
Exim4 <= 4.69 - string_format Function Heap Buffer Overflow
2014-07-01 00:00:00
metasploit
metasploit
Exim4 string_format Function Heap Buffer Overflow
2010-12-11 10:55:24
centos
centos
exim security update
2011-01-27 09:23:09
suse
suse
remote code execution in exim
2010-12-13 10:39:26
packetstorm
packetstorm
Exim4 <= 4.69 string_format Function Heap Buffer Overflow
2010-12-11 00:00:00
exploitdb
exploitdb
Exim4 &lt; 4.69 - string_format Function Heap Buffer Overflow (Metasploit)
2010-12-16 00:00:00
gentoo
gentoo
Exim: Multiple vulnerabilities
2014-01-27 00:00:00
nmap
nmap
smtp-vuln-cve2010-4344 NSE Script
2011-06-24 15:37:53
thn
thn
Nmap 5.59 BETA1 - 40 new NSE scripts & improved IPv6
2011-07-01 11:41:00

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for DEBIAN:DSA-2154-2:E2943
openvas22debian6ubuntucve2nessus17osv2securityvulns4ubuntu1veracode1attackerkb1cve2debiancve2prion2redhat1oraclelinux1cert1cisa_kev1cvelist2freebsd2checkpoint_advisories1seebug1metasploit1centos1suse1packetstorm1exploitdb1gentoo1nmap1thn1