bug#66304: exim vulnearable to CVE-2023-42115 et al

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#66304: exim vulnearable to CVE-2023-42115 et al

From:	Wilko Meyer
Subject:	bug#66304: exim vulnearable to CVE-2023-42115 et al
Date:	Mon, 02 Oct 2023 12:35:20 +0200

Hi Guix,

Exim currently has unpatched vulnearabilities regarding its EXTERNAL
Auth driver as well as its SPA/NTLM authenticator.

According to the project[0] prospective fixes seem to be around the
corner. We should probably bump the Exim version we ship to a
non-vulnearable version as soon as one is available.

[0]: https://www.exim.org/static/doc/security/CVE-2023-zdi.txt

-- 
Kind regards,

Wilko Meyer
w@wmeyer.eu

[Prev in Thread]

Current Thread

[Next in Thread]

bug#66304: exim vulnearable to CVE-2023-42115 et al, Wilko Meyer <=
- bug#66304: [PATCH] gnu: exim: Update to 4.96.1, Wilko Meyer, 2023/10/05
- bug#66304: exim vulnearable to CVE-2023-42115 et al, John Kehayias, 2023/10/06

Prev by Date: bug#66268: Guix makes invalid assumptions regarding guile-git guarantees leading to guix pull failing
Next by Date: bug#66305: Error with recursive git checkout
Previous by thread: bug#66268: Guix makes invalid assumptions regarding guile-git guarantees leading to guix pull failing
Next by thread: bug#66304: [PATCH] gnu: exim: Update to 4.96.1
Index(es):
- Date
- Thread