Exim Header Syntax Checking Remote Stack Buffer Overrun Vulnerability
Debian has released advisory DSA-501-1 dealing with this and other issues. Please see the referenced web advisory for more information and details on obtaining fixes.
Debian has released advisory DSA 502-1 dealing with this issue for their Exim-tls packages. Please see the referenced web advisory for more information and details on obtaining fixes.
Gentoo has released advisory GLSA 200405-07 dealing with this issue. They have recommended taking the following actions:
All users of Exim should upgrade to the latest stable version:
# emerge sync
# emerge -pv ">=net-mail/exim-4.33-r1"
# emerge ">=net-mail/exim-4.33-r1"
Please see the referenced advisory for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.
University of Cambridge Exim-tls 3.35
University of Cambridge Exim 3.35