CVE-2019-10149 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Critical
Remote	Yes
Type	Arbitrary code execution
Description	A flaw was found in the way exim validated recipient addresses. A remote attacker could use this flaw to execute arbitrary commands on the exim server with the permissions of the user running the application.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-982	exim	4.91-1	4.92-1	Critical	Fixed

References
https://www.exim.org/static/doc/security/CVE-2019-10149.txt https://www.openwall.com/lists/oss-security/2019/06/06/1 https://www.openwall.com/lists/oss-security/2019/06/05/4 https://www.openwall.com/lists/oss-security/2019/06/05/3 https://www.openwall.com/lists/oss-security/2019/06/05/2

References

https://www.exim.org/static/doc/security/CVE-2019-10149.txt
https://www.openwall.com/lists/oss-security/2019/06/06/1
https://www.openwall.com/lists/oss-security/2019/06/05/4
https://www.openwall.com/lists/oss-security/2019/06/05/3
https://www.openwall.com/lists/oss-security/2019/06/05/2