Boletines de Vulnerabilidades

DSA-3888 exim4 - security update


Información sobre el sistema

   
Software afectado Debian

Descripción

The Qualys Research Labs discovered a memory leak in the Exim mailtransport agent. This is not a security vulnerability in Exim by itself,but can be used to exploit a vulnerability in stack handling. For thefull details, please refer to their advisory published at:https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

More info:

https://www.debian.org/security/2017/dsa-3888

Identificadores estándar

Propiedad Valor
CVE CVE-2017-1000 and DSA-3888.

Histórico de versiones

Versión Comentario Fecha
1.0 Advisory issued 2017-06-21

Miembros de

Ministerio de Defensa
CNI
CCN
CCN-CERT