[exim-dev] CVE-2021-38371 (allows response injection during …

Top Page
Delete this message
Reply to this message
Author: Harry Mills
Date:  
To: exim-dev
Subject: [exim-dev] CVE-2021-38371 (allows response injection during MTA SMTP sending)
Hi,

We have a PCI DSS compliance failure for CVE-2021-38371, the details
page (linked from mitre.org site) gives a 404 and we cannot find any
other details on what this CVE refers to, or whether or not a fix is
available.

We are running exim 4.94.2-2 from EPEL on Centos8.

Any information would be very welcome.

Best wishes,

Harry