Описание
Security update for exim
exim was updated to fix a security issue:
- CVE-2019-15846: Fixed a buffer overflow in SMTP Delivery process where a remote attacker could execute code with root privileges by sending crafted SNI data (boo#1149182).
Список пакетов
openSUSE Leap 15.0
exim-4.88-lp151.4.9.1
eximon-4.88-lp151.4.9.1
eximstats-html-4.88-lp151.4.9.1
openSUSE Leap 15.1
exim-4.88-lp151.4.9.1
eximon-4.88-lp151.4.9.1
eximstats-html-4.88-lp151.4.9.1
Ссылки
- E-Mail link for openSUSE-SU-2019:2093-1
- SUSE Security Ratings
- SUSE Bug 1149182
- SUSE CVE CVE-2019-15846 page
Описание
Exim before 4.92.2 allows remote attackers to execute arbitrary code as root via a trailing backslash.
Затронутые продукты
openSUSE Leap 15.0:exim-4.88-lp151.4.9.1
openSUSE Leap 15.0:eximon-4.88-lp151.4.9.1
openSUSE Leap 15.0:eximstats-html-4.88-lp151.4.9.1
openSUSE Leap 15.1:exim-4.88-lp151.4.9.1
Ссылки
- CVE-2019-15846
- SUSE Bug 1149182