Re: [exim-dev] [Bug 2235] New: CVE-2018-6789

Top Pagina
Delete this message
Reply to this message
Auteur: Vsevolod Stakhov
Datum:  
Aan: hs, exim-dev
Onderwerp: Re: [exim-dev] [Bug 2235] New: CVE-2018-6789
On 09.02.2018 09:40, admin@??? wrote:
> https://bugs.exim.org/show_bug.cgi?id=2235
>
>             Bug ID: 2235
>            Summary: CVE-2018-6789
>            Product: Exim
>            Version: 4.90
>           Hardware: All
>                 OS: All
>             Status: NEW
>           Severity: security
>           Priority: medium
>          Component: Unfiled
>           Assignee: nigel@???
>           Reporter: hs@???
>                 CC: exim-dev@???

>
> Buffer overflow. RCE might be possible using a handcrafted message. Bug is
> fixed already and distros have access to the fixed versions since 2018-02-08
> 17:00 UTC.


It seems that FreeBSD is no longer considered in CVE early disclosure,
isn't it?