7 matches found
SUSE CVE-2022-37451
Exim before 4.96 has an invalid free in pamconverse in auths/callpam.c because storefree is not used after storemalloc...
CLSA-2022-1661445415 Fixed CVE-2022-37451 in exim
CVE-2022-37451: fix invalid free in pamconverse...
CLSA-2022-1661173443 Fix CVE(s): CVE-2022-37452, CVE-2022-37451
SECURITY UPDATE: exim heap overflow in hostnamelookup - debian/patches/CVE-2022-37452.patch: fix hostnamelookup - CVE-2022-37452 SECURITY UPDATE: invalid free in pamconverse in auths/callpam.c - debian/patches/CVE-2022-37451.patch: fix PAM auth - CVE-2022-37451...
CLSA-2022-1660761670 Fixed CVEs in exim: CVE-2022-37451, CVE-2022-37452
CVE-2022-37452: fix heap-based buffer overflow for the alias list in hostnamelookup - CVE-2022-37451: fix invalid free in pamconverse...
CLSA-2022-1660759272 Fixed CVEs in exim: CVE-2022-37451, CVE-2022-37452
CVE-2022-37452: fix heap-based buffer overflow for the alias list in hostnamelookup - CVE-2022-37451: fix invalid free in pamconverse...
DEBIAN-CVE-2022-37451
Exim before 4.96 has an invalid free in pamconverse in auths/callpam.c because storefree is not used after storemalloc...
PT-2022-3997 · Exim +1 · Exim +1
Name of the Vulnerable Software and Affected Versions: Exim versions prior to 4.96 Description: The issue is related to the use of memory after it has been freed in the pam converse function of the Exim mail server. This can be exploited by a remote attacker to impact the confidentiality,...