Описание
ELSA-2010-0970: exim security update (CRITICAL)
[4.63-3.el5_5.2]
- fix buffer overflow in string_format (CVE-2010-4344, #662019)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
exim
4.63-5.el5_5.2
exim-mon
4.63-5.el5_5.2
exim-sa
4.63-5.el5_5.2
Oracle Linux x86_64
exim
4.63-5.el5_5.2
exim-mon
4.63-5.el5_5.2
exim-sa
4.63-5.el5_5.2
Oracle Linux i386
exim
4.63-5.el5_5.2
exim-mon
4.63-5.el5_5.2
exim-sa
4.63-5.el5_5.2
Связанные CVE
Связанные уязвимости
Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.
Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.
Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.
Heap-based buffer overflow in the string_vformat function in string.c ...
Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.