[exim-dev] [Bug 2199] Exim use-after-free vulnerability whil…

Top Page
This message is part of the following thread:
M++++++++++++++++++\the complete thread tree sorted by date
MMMMMMMMMMMMMMMMMMMMadmin at <-
admin at ->
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 2199] Exim use-after-free vulnerability while reading mail header
https://bugs.exim.org/show_bug.cgi?id=2199

--- Comment #1 from Jeremy Harris <jgh146exb@???> ---
Apart from signal-handlers, exim is not threaded so
"any other allocation between the allocation and extension of this buffer"
cannot happen (assuming we don't do allocations in sig-handlers).

There is presumably a bug, but I'm doubting the allegation of a race.

--
You are receiving this mail because:
You are on the CC list for the bug.
This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-[exim-dev] [Bug 2199] Exim use-after-free vulnerability while reading mail header[exim-dev] [Bug 2199] Exim use-after-free vulnerability while reading mail header->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)