USN-5574-1: Exim vulnerability
22 August 2022
Exim could be made to crash of execute arbitrary code if it received a specially crafted input.
Releases
Packages
- exim4 - Exim is a mail transport agent
Details
It was discovered that Exim incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a crash or
execute arbitrary code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04
-
exim4-base
-
4.93-13ubuntu1.6
-
exim4-daemon-heavy
-
4.93-13ubuntu1.6
-
exim4-daemon-light
-
4.93-13ubuntu1.6
Ubuntu 18.04
-
exim4-base
-
4.90.1-1ubuntu1.9
-
exim4-daemon-heavy
-
4.90.1-1ubuntu1.9
-
exim4-daemon-light
-
4.90.1-1ubuntu1.9
Ubuntu 16.04
-
exim4-base
-
4.86.2-2ubuntu2.6+esm2
Available with Ubuntu Pro
-
exim4-daemon-heavy
-
4.86.2-2ubuntu2.6+esm2
Available with Ubuntu Pro
-
exim4-daemon-light
-
4.86.2-2ubuntu2.6+esm2
Available with Ubuntu Pro
Ubuntu 14.04
-
exim4-base
-
4.82-3ubuntu2.4+esm4
Available with Ubuntu Pro
-
exim4-daemon-heavy
-
4.82-3ubuntu2.4+esm4
Available with Ubuntu Pro
-
exim4-daemon-light
-
4.82-3ubuntu2.4+esm4
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.