- Vulnerability/
- USN-4366-1
USN-4366-1: Exim vulnerability
First published: Tue May 19 2020(Updated: )
It was discovered that Exim incorrectly handled certain inputs. An remote attacker could possibly use this issue to access sensitive information or authentication bypass.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/exim4-base | <4.93-13ubuntu1.1 | 4.93-13ubuntu1.1 |
| Ubuntu Ubuntu | =20.04 | |
| All of | ||
| ubuntu/exim4-daemon-heavy | <4.93-13ubuntu1.1 | 4.93-13ubuntu1.1 |
| Ubuntu Ubuntu | =20.04 | |
| All of | ||
| ubuntu/exim4-daemon-light | <4.93-13ubuntu1.1 | 4.93-13ubuntu1.1 |
| Ubuntu Ubuntu | =20.04 | |
| All of | ||
| ubuntu/exim4-base | <4.92.1-1ubuntu3.1 | 4.92.1-1ubuntu3.1 |
| Ubuntu Ubuntu | =19.10 | |
| All of | ||
| ubuntu/exim4-daemon-heavy | <4.92.1-1ubuntu3.1 | 4.92.1-1ubuntu3.1 |
| Ubuntu Ubuntu | =19.10 | |
| All of | ||
| ubuntu/exim4-daemon-light | <4.92.1-1ubuntu3.1 | 4.92.1-1ubuntu3.1 |
| Ubuntu Ubuntu | =19.10 | |
| All of | ||
| ubuntu/exim4-base | <4.90.1-1ubuntu1.5 | 4.90.1-1ubuntu1.5 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/exim4-daemon-heavy | <4.90.1-1ubuntu1.5 | 4.90.1-1ubuntu1.5 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/exim4-daemon-light | <4.90.1-1ubuntu1.5 | 4.90.1-1ubuntu1.5 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/exim4-base | <4.86.2-2ubuntu2.6 | 4.86.2-2ubuntu2.6 |
| Ubuntu Ubuntu | =16.04 | |
| All of | ||
| ubuntu/exim4-daemon-heavy | <4.86.2-2ubuntu2.6 | 4.86.2-2ubuntu2.6 |
| Ubuntu Ubuntu | =16.04 | |
| All of | ||
| ubuntu/exim4-daemon-light | <4.86.2-2ubuntu2.6 | 4.86.2-2ubuntu2.6 |
| Ubuntu Ubuntu | =16.04 | |
| All of | ||
| ubuntu/exim4-base | <4.82-3ubuntu2.4+esm2 | 4.82-3ubuntu2.4+esm2 |
| Ubuntu Ubuntu | =14.04 | |
| All of | ||
| ubuntu/exim4-daemon-heavy | <4.82-3ubuntu2.4+esm2 | 4.82-3ubuntu2.4+esm2 |
| Ubuntu Ubuntu | =14.04 | |
| All of | ||
| ubuntu/exim4-daemon-light | <4.82-3ubuntu2.4+esm2 | 4.82-3ubuntu2.4+esm2 |
| Ubuntu Ubuntu | =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2020-12783
- https://launchpad.net/ubuntu/+source/exim4/4.93-13ubuntu1.1
- https://launchpad.net/ubuntu/+source/exim4/4.92.1-1ubuntu3.1
- https://launchpad.net/ubuntu/+source/exim4/4.90.1-1ubuntu1.5
- https://launchpad.net/ubuntu/+source/exim4/4.86.2-2ubuntu2.6
- https://ubuntu.com/security/notices/USN-4366-1 (Advisory)
Frequently Asked Questions
What is the vulnerability ID for the Exim vulnerability?
The vulnerability ID for the Exim vulnerability is USN-4366-1.
How does the Exim vulnerability impact systems?
The Exim vulnerability can allow remote attackers to access sensitive information or bypass authentication.
Which software versions are affected by the Exim vulnerability?
The Exim vulnerability affects various versions of Exim packages on Ubuntu 14.04, 16.04, 18.04, 19.10, and 20.04.
What is the severity of the Exim vulnerability?
The severity of the Exim vulnerability is not specified in the provided information.
How can I fix the Exim vulnerability?
To fix the Exim vulnerability, update the Exim packages to the specified remedial versions provided by Ubuntu.
- agent/references
- agent/severity
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/title
- agent/description
- agent/tags
- agent/event
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/trending
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/20.04
- version/ubuntu ubuntu/19.10
- version/ubuntu ubuntu/18.04
- version/ubuntu ubuntu/16.04
- version/ubuntu ubuntu/14.04