CLSA-2026-1778173472

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1778173472

Upstream

CVE-2026-40685

CVE-2026-40687

Published

2026-05-07T17:04:42Z

Modified

2026-06-01T00:33:18.905493333Z

Summary

exim: Fix of 2 CVEs

Details

CVE-2026-40685: fix heap corruption when expanding malformed JSON
CVE-2026-40687: fix heap buffer overflow and infoleak in SPA authenticator

References

https://errata.tuxcare.com/els_os/centos7els/CLSA-2026-1778173472.html

Affected packages

TuxCare:CentOS:7

exim

Package

Name: exim
Purl: pkg:rpm/tuxcare/exim?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"

exim-greylist

Package

Name: exim-greylist
Purl: pkg:rpm/tuxcare/exim-greylist?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"

exim-mon

Package

Name: exim-mon
Purl: pkg:rpm/tuxcare/exim-mon?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"

exim-mysql

Package

Name: exim-mysql
Purl: pkg:rpm/tuxcare/exim-mysql?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"

exim-pgsql

Package

Name: exim-pgsql
Purl: pkg:rpm/tuxcare/exim-pgsql?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"

exim-sysvinit

Package

Name: exim-sysvinit
Purl: pkg:rpm/tuxcare/exim-sysvinit?distro=centos-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.97.1-1.el7.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2026-1778173472.json"