UbuntuUpdates.org

Package "exim4"

Name: exim4

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • monitor application for the Exim MTA (v4) (X11 interface)

Latest version: 4.96-3ubuntu1.1
Release: kinetic (22.10)
Level: updates
Repository: universe

Links



Other versions of "exim4" in Kinetic

Repository Area Version
base main 4.96-3ubuntu1
base universe 4.96-3ubuntu1
security main 4.96-3ubuntu1.1
security universe 4.96-3ubuntu1.1
updates main 4.96-3ubuntu1.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.96-3ubuntu1.1 2022-11-24 17:07:29 UTC

  exim4 (4.96-3ubuntu1.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: use after free in regex handler
    - debian/patches/CVE-2022-3559-1.patch: properly clear references in
      src/exim.c, src/expand.c, src/functions.h, src/globals.c,
      src/regex.c, src/smtp_in.c.
    - debian/patches/CVE-2022-3559-2.patch: fix non-WITH_CONTENT_SCAN build
      in src/exim.c, src/regex.c.
    - debian/patches/CVE-2022-3559-3.patch: fix non-WITH_CONTENT_SCAN build
      in src/exim.c, src/functions.h, src/globals.h, src/regex.c,
      src/smtp_in.c.
    - debian/patches/CVE-2022-3559-4.patch: fix non-WITH_CONTENT_SCAN build
      in src/expand.c.
    - CVE-2022-3559

 -- Marc Deslauriers <email address hidden> Wed, 23 Nov 2022 10:48:18 -0500

CVE-2022-3559 A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manip



About   -   Send Feedback to @ubuntu_updates