7 matches found
CLSA-2023-1689259028 Fix CVE(s): CVE-2022-37452, CVE-2022-32546, CVE-2023-34151
SECURITY UPDATE: undefined behaviors of casting double to sizet in svg, mvg and other coders recurring bugs of CVE-2022-32546 - debian/patches/CVE-2023-34151.patch: properly cast double to sizet - CVE-2022-37452...
[SECURITY] [DLA 3082-1] exim4 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3082-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler August 27, 2022 https://wiki.debian.org/LTS -...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Exim vulnerability (USN-5574-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5574-1 advisory. It was discovered that Exim incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash or execute...
Fixed CVEs in exim: CVE-2022-37451, CVE-2022-37452
CVE-2022-37452: fix heap-based buffer overflow for the alias list in hostnamelookup - CVE-2022-37451: fix invalid free in pamconverse...
Exim < 4.95 Buffer Overflow Vulnerability
Exim is prone to a heap-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:exim:exim"; if...
CVE-2022-37452
Exim before 4.95 has a heap-based buffer overflow for the alias list in hostnamelookup in host.c when senderhostname is set...
CVE-2022-37452
The CVE-2022-37452 issue affects Exim (MTA) prior to version 4.95, where a heap-based buffer overflow occurs in the alias list handled by host_name_lookup in host.c when sender_host_name is set. The vulnerability can lead to denial of service and, per sources, possibly arbitrary code execution; N...