CVE-2019-15846 exim4 execute programs with root privileges
Bug #1843041 reported by
do3meli
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
exim4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
please see upstream CVE details:
https:/
please see Debian package fixes:
CVE References
information type: | Private Security → Public Security |
To post a comment you must log in.
This bug was fixed in the package exim4 - 4.92-4ubuntu1.3
----------------
exim4 (4.92-4ubuntu1.3) disco-security; urgency=medium
* SECURITY UPDATE: remote command execution patches/ CVE-2019- 15846.patch: ensure not to interpret '\\'
- debian/
before '\0' in src/string.c
- CVE-2019-15846
-- Alex Murray <email address hidden> Thu, 05 Sep 2019 11:20:47 +0930