exim-4.86.2-2.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10017-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z exim-4.86.2-2.2 on GA media These are all security issues fixed in the exim-4.86.2-2.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10017 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2010-2023/ SUSE CVE CVE-2010-2023 page https://www.suse.com/security/cve/CVE-2010-2024/ SUSE CVE CVE-2010-2024 page https://www.suse.com/security/cve/CVE-2010-4344/ SUSE CVE CVE-2010-4344 page https://www.suse.com/security/cve/CVE-2010-4345/ SUSE CVE CVE-2010-4345 page https://www.suse.com/security/cve/CVE-2011-0017/ SUSE CVE CVE-2011-0017 page https://www.suse.com/security/cve/CVE-2011-1407/ SUSE CVE CVE-2011-1407 page https://www.suse.com/security/cve/CVE-2011-1764/ SUSE CVE CVE-2011-1764 page https://www.suse.com/security/cve/CVE-2012-5671/ SUSE CVE CVE-2012-5671 page https://www.suse.com/security/cve/CVE-2014-2957/ SUSE CVE CVE-2014-2957 page https://www.suse.com/security/cve/CVE-2014-2972/ SUSE CVE CVE-2014-2972 page https://www.suse.com/security/cve/CVE-2016-1531/ SUSE CVE CVE-2016-1531 page openSUSE Tumbleweed exim-4.86.2-2.2 eximon-4.86.2-2.2 eximstats-html-4.86.2-2.2 exim-4.86.2-2.2 as a component of openSUSE Tumbleweed eximon-4.86.2-2.2 as a component of openSUSE Tumbleweed eximstats-html-4.86.2-2.2 as a component of openSUSE Tumbleweed transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify the st_nlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user's file. CVE-2010-2023 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2023.html CVE-2010-2023 https://bugzilla.suse.com/612549 SUSE Bug 612549 transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/. CVE-2010-2024 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2024.html CVE-2010-2024 https://bugzilla.suse.com/612549 SUSE Bug 612549 Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging. CVE-2010-4344 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-4344.html CVE-2010-4344 https://bugzilla.suse.com/658731 SUSE Bug 658731 Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive. CVE-2010-4345 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-4345.html CVE-2010-4345 https://bugzilla.suse.com/658731 SUSE Bug 658731 The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack. CVE-2011-0017 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0017.html CVE-2011-0017 https://bugzilla.suse.com/668599 SUSE Bug 668599 The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity. CVE-2011-1407 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1407.html CVE-2011-1407 https://bugzilla.suse.com/694798 SUSE Bug 694798 Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character. CVE-2011-1764 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1764.html CVE-2011-1764 https://bugzilla.suse.com/692227 SUSE Bug 692227 Heap-based buffer overflow in the dkim_exim_query_dns_txt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and acl_smtp_connect and acl_smtp_rcpt are not set to "warn control = dkim_disable_verify," allows remote attackers to execute arbitrary code via an email from a malicious DNS server. CVE-2012-5671 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5671.html CVE-2012-5671 https://bugzilla.suse.com/786652 SUSE Bug 786652 The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function. CVE-2014-2957 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-2957.html CVE-2014-2957 expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value. CVE-2014-2972 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-2972.html CVE-2014-2972 https://bugzilla.suse.com/888520 SUSE Bug 888520 Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument. CVE-2016-1531 openSUSE Tumbleweed:exim-4.86.2-2.2 openSUSE Tumbleweed:eximon-4.86.2-2.2 openSUSE Tumbleweed:eximstats-html-4.86.2-2.2 moderate 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1531.html CVE-2016-1531 https://bugzilla.suse.com/968844 SUSE Bug 968844