Exim vulnerability

2022-11-2400:00:00

ubuntu.com

105

exim

ubuntu

vulnerability

code execution

denial of service

regular expressions

mail transport agent

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

8.3

Confidence

High

EPSS

0.007

Percentile

80.2%

JSON

Releases

Ubuntu 22.10
Ubuntu 22.04 LTS
Ubuntu 20.04 LTS
Ubuntu 18.04 ESM

Packages

exim4 - Exim is a mail transport agent

Details

It was discovered that Exim incorrectly handled certain regular
expressions. An attacker could use this issue to cause Exim to crash,
resulting in a denial of service, or possibly execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu22.10noarchexim4-base< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-base-dbgsym< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-config< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-daemon-heavy< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-daemon-heavy-dbgsym< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-daemon-light< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-daemon-light-dbgsym< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarchexim4-dev< 4.96-3ubuntu1.1UNKNOWN
Ubuntu22.10noarcheximon4< 4.96-3ubuntu1.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	22.10	noarch	exim4-base	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-base-dbgsym	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-config	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-daemon-heavy	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-daemon-heavy-dbgsym	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-daemon-light	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-daemon-light-dbgsym	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	exim4-dev	< 4.96-3ubuntu1.1	UNKNOWN
Ubuntu	22.10	noarch	eximon4	< 4.96-3ubuntu1.1	UNKNOWN