OPENSUSE-SU-2025:20155-1 Security update for exim

This update for exim fixes the following issues: - CVE-2025-53881: Fixed a potential security issue with logfile rotation bsc1246457...

EUVD-2003-0734

Malware in sbrugna...

EUVD-1999-0952

Malware in sbrugna...

OESA-2024-2129 exim security update

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

OPENSUSE-SU-2022:10191-1 Security update for exim

This update for exim fixes the following issues: - CVE-2022-3559: Fixed use after free in processing of the component Regex Handler boo1204427, Bug 2915...

CVE-2022-37451

Exim before 4.96 has an invalid free in pamconverse in auths/callpam.c because storefree is not used after storemalloc...

OPENSUSE-SU-2021:0753-1 Security update for exim

This update for exim fixes the following issues: exim was updated to 4.94.2: security update boo1185631 CVE-2020-28007: Link attack in Exim's log directory CVE-2020-28008: Assorted attacks in Exim's spool directory CVE-2020-28014: Arbitrary PID file creation CVE-2020-28011: Heap buffer overflow i...

Unspecified Vulnerability in Exim

Exim was developed at Cambridge University as a Message Transfer Agent MTA for Unix systems connected to the Internet. Exim has a security vulnerability. An attacker can exploit the vulnerability by authenticating a remote SMTP client to insert line breaks into a fake offline file via AUTH= in th...

Unspecified Vulnerability in Exim (CNVD-2021-34533)

Exim was developed at Cambridge University as a Message Transfer Agent MTA for Unix systems connected to the Internet. A security vulnerability exists in Exim. The vulnerability stems from the fact that recipient addresses can have newline characters, which can be exploited by a local attacker to...

OPENSUSE-SU-2021:0677-1 Security update for exim

This update for exim fixes the following issues: Exim was updated to exim-4.94.2 security update boo1185631 CVE-2020-28007: Link attack in Exim's log directory CVE-2020-28008: Assorted attacks in Exim's spool directory CVE-2020-28014: Arbitrary PID file creation CVE-2020-28011: Heap buffer overfl...

Debian DLA-2650-1 : exim4 security update

The Qualys Research Labs reported several vulnerabilities in Exim, a mail transport agent, which could result in local privilege escalation and remote code execution. Details can be found in the Qualys advisory at https://www.qualys.com/2021/05/04/21nails/21nails.txt For Debian 9 stretch, these...

CVE-2020-28007

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory owned by a non-root user, a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem...

DLA-2062-1 sa-exim - security update

Bulletin has no description...

OPENSUSE-SU-2019:1524-1 Security update exim

exim was updated to fix a security issue. - CVE-2019-10149: Fixed a Remote Command Execution in exim bsc1136587...

Fedora 27 : exim (2017-0053bb9719)

This is an update fixing denial of service CVE-2017-16944. ---- This is an update fixing use-after-free CVE-2017-16943. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

Moderate: Red Hat Security Advisory: exim security update

Updated exim packages that resolve security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Exim is a mail transport agent MTA developed at the University of Cambridge for use on Unix...

Fedora Core 2 : exim-4.43-1.FC2.1 (2005-001)

This erratum fixes two relatively minor security issues which were discovered in Exim in the last few weeks. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2005-0021 and CVE-2005-0022 to these, respectively. 1. The function hostaton can overflow a buffer...

CVE-2002-0274

Exim 3.34 and earlier may allow local users to gain privileges via a buffer overflow in long -C configuration file and other command line arguments...

Выполнение команд в exim (code execution)

При использовании правил перенаправляющих почту без проверки локальной части не контролируются специальные символы, что может привести к перенаправлению песьма во внешнее приложение...

[Exim] Potential security problem

From: Philip Hazel [email protected] To: [email protected], [email protected] Subject: Exim Potential security problem X-BeenThere: [email protected] Date: Wed, 19 Dec 2001 14:35:41 +0000 GMT Important. Please read. Amongst other things, Exim 3.34 and Exim 3.952 alpha for Exim 4, which ...