[exim-dev] [Bug 2449] Heap Overflow

Top Page
This message is part of the following thread:
M+++++++++\the complete thread tree sorted by date
MMMMMMMMMMMadmin at <-
admin at ->
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 2449] Heap Overflow
https://bugs.exim.org/show_bug.cgi?id=2449

--- Comment #5 from Heiko Schlittermann <hs@???> ---
(In reply to areuu from comment #4)
> Please credit my team QAX A-TEAM.

The statement in the source will start as shown below. 

CVE ID:     CVE-2019-16928
Date:       2019-09-27 (CVE assigned)
Version(s): from 4.92 up to and including 4.92.2
Reporter:   QAX-A-TEAM <areuu@???>
Reference:  https://bugs.exim.org/show_bug.cgi?id=2449
Issue:      Heap-based buffer overflow in string_vformat,
            remote code execution seems to be possible


--
You are receiving this mail because:
You are on the CC list for the bug.
This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-Re: [exim-dev] Debugging SMTP transport crash[exim-dev] [Bug 2449] Heap Overflow->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)