CVE-2012-5671: Heap-buffer overflow in DNS decode logic used for DKIM
Bug #1071694 reported by
Felix Geyer
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
exim4 (Fedora) |
Fix Released
|
Critical
|
|||
exim4 (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Bug Description
A heap-buffer overflow was found in the DKIM DNS decode logic, used by Exim between version 4.70 and 4.80.
Exim 4.80.1 release announcement:
https:/
CVE References
Changed in exim4 (Ubuntu): | |
status: | New → Triaged |
importance: | Undecided → High |
Changed in exim4 (Fedora): | |
importance: | Unknown → Critical |
status: | Unknown → Fix Released |
To post a comment you must log in.
A heap-buffer overflow was found in the DKIM DNS decode logic, used by exim. A remote attacker could use this flaw to execute arbitrary code on the mail server running Exim.
This is fixed in version 4.80.1