------- You are receiving this mail because: -------
You are on the CC list for the bug.
http://bugs.exim.org/show_bug.cgi?id=1599
Summary: Invalid MIME Content-Type header causes segfault in
acl_smtp_mime
Product: Exim
Version: 4.84
Platform: Other
OS/Version: All
Status: NEW
Severity: bug
Priority: medium
Component: ACLs
AssignedTo: jgh146exb@???
ReportedBy: lee-exim@???
CC: exim-dev@???
Created an attachment (id=797)
--> (
http://bugs.exim.org/attachment.cgi?id=797)
Mail with invalid Content-Type header
Earlier today I was alerted to a large number of Exim segfaults
kernel: exim4[29246]: segfault at 0 ip b7684ae8 sp bf82ce08 error 6 in
exim4[b75f9000+125000]
On investigation I could see that this occurred every time a particular piece
of spam was attempted to be sent (and since exim was prematurely breaking the
connection this was being retried).
I've extracted the relevant section from the mail and the following will
reliably cause a segfault when sent in response to DATA (where "<80>" is the
character value). This only occurs if "acl_smtp_mime" is enabled, regardless
of if any tests are actually applied.
-----
Content-Type: multipart/alternative; boundary="123456789"
--123456789
Content-Type: <80>; name=""
--123456789--
------
(Exim 4.84~RC1-3ubuntu2)
--
Configure bugmail:
http://bugs.exim.org/userprefs.cgi?tab=email
