Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2025:20155-1

Опубликовано: 10 дек. 2025
Источник: suse-cvrf

Описание

Security update for exim

This update for exim fixes the following issues:

  • CVE-2025-53881: Fixed a potential security issue with logfile rotation (bsc#1246457)

Список пакетов

openSUSE Leap 16.0
exim-4.98.2-bp160.1.2
eximon-4.98.2-bp160.1.2
eximstats-html-4.98.2-bp160.1.2

Ссылки

Описание

A UNIX Symbolic Link (Symlink) Following vulnerability in logrotate config in the exim package allowed privilege escalation from mail user/group to root.This issue affects Tumbleweed: from ? before 4.98.2-lp156.248.1.

Затронутые продукты
openSUSE Leap 16.0:exim-4.98.2-bp160.1.2
openSUSE Leap 16.0:eximon-4.98.2-bp160.1.2
openSUSE Leap 16.0:eximstats-html-4.98.2-bp160.1.2
Ссылки