It was discovered that Exim did not properly deallocate memory when processing certain command line arguments. A local attacker could use this in conjunction with a vulnerability in the underlying kernel to possibly execute arbitrary code and gain administrative privileges.
{ "availability": "No subscription required", "binaries": [ { "exim4": "4.82-3ubuntu2.3", "exim4-dev": "4.82-3ubuntu2.3", "eximon4": "4.82-3ubuntu2.3", "eximon4-dbgsym": "4.82-3ubuntu2.3", "exim4-base-dbgsym": "4.82-3ubuntu2.3", "exim4-daemon-heavy-dbg": "4.82-3ubuntu2.3", "exim4-daemon-light": "4.82-3ubuntu2.3", "exim4-config": "4.82-3ubuntu2.3", "exim4-daemon-heavy-dbgsym": "4.82-3ubuntu2.3", "exim4-base": "4.82-3ubuntu2.3", "exim4-dbg": "4.82-3ubuntu2.3", "exim4-daemon-light-dbgsym": "4.82-3ubuntu2.3", "exim4-daemon-light-dbg": "4.82-3ubuntu2.3", "exim4-daemon-heavy": "4.82-3ubuntu2.3" } ] }
{ "availability": "No subscription required", "binaries": [ { "exim4": "4.86.2-2ubuntu2.2", "exim4-dev": "4.86.2-2ubuntu2.2", "eximon4": "4.86.2-2ubuntu2.2", "eximon4-dbgsym": "4.86.2-2ubuntu2.2", "exim4-base-dbgsym": "4.86.2-2ubuntu2.2", "exim4-daemon-heavy-dbg": "4.86.2-2ubuntu2.2", "exim4-daemon-light": "4.86.2-2ubuntu2.2", "exim4-config": "4.86.2-2ubuntu2.2", "exim4-daemon-heavy-dbgsym": "4.86.2-2ubuntu2.2", "exim4-base": "4.86.2-2ubuntu2.2", "exim4-dbg": "4.86.2-2ubuntu2.2", "exim4-daemon-light-dbgsym": "4.86.2-2ubuntu2.2", "exim4-daemon-light-dbg": "4.86.2-2ubuntu2.2", "exim4-daemon-heavy": "4.86.2-2ubuntu2.2" } ] }