Ubuntu
exim4 package

  1. Bug #1843041
  2. Comment #3

Comment 3 for bug 1843041

Revision history for this message
Alex Murray (alexmurray) wrote :

This bug was fixed in the package exim4 - 4.86.2-2ubuntu2.5
----------------
exim4 (4.86.2-2ubuntu2.5) xenial-security; urgency=medium

  * SECURITY UPDATE: remote command execution
    - debian/patches/CVE-2019-15846.patch: ensure not to interpret '\\'
      before '\0' in src/string.c
    - CVE-2019-15846

 -- Alex Murray <email address hidden> Thu, 05 Sep 2019 11:19:50 +0930