Re: [exim] CVE-2019-15846: Exim - local or remote attacker c…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MSebastian Nielsen at <-
MHeiko Schlittermann at ->
Delete this message
Reply to this message
Author: Heiko Schlittermann
Date:  
To: exim-users
Subject: Re: [exim] CVE-2019-15846: Exim - local or remote attacker can execute programs with root privileges
Sebastian Nielsen via Exim-users <exim-users@???> (Fr 06 Sep 2019 21:37:41 CEST):
> Ooo just that, forgot that...
>
> But still the question remains, how does it prevent the exploit? Doesn't the
> exploit (root command) get executed immidiately when TLS negotiation is
> done?

This is left as an exercise to the reader of src/src/string.c, where we
applied the patch.

BTW, when the TLS negotiation is done, this is done by a child of the
listener process, and this child process should have dropped its
privileges already.

--
Heiko
This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] CVE-2019-15846: Exim - local or remote attacker can execute programs with root privilegesRe: [exim] CVE-2019-15846: Exim - local or remote attacker can execute programs with root privileges->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)