Re: [exim] CVE-2018-6789 Exim 4.90 and earlier: buffer overflow

Heiko Schlittermann (Mi 07 Feb 2018 11:39:43 CET): > CVE-2018-6789 Exim 4.90 and earlier > === …. > Next steps: > > * t0: Distros will get access to our "security" non-public git repo > (based on the SSH keys known to us) > *

Re: [exim] CVE-2018-6789 Exim 4.90 and earlier: buffer overflow

Heiko Schlittermann (Mi 07 Feb 2018 11:39:43 CET): > CVE-2018-6789 Exim 4.90 and earlier > === > > There is a buffer overflow in an utility function, if some pre-conditions > are met. Using a handcrafted message, remote code execution seems