CVE-2020-28017 log

Source
Severity Low
Remote Yes
Type Arbitrary code execution
Description
Exim 4 before 4.94.2 allows integer overflow to buffer overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.
Group Package Affected Fixed Severity Status Ticket
AVG-1911 exim 4.94-3 4.94.2-1 High Fixed
References
https://www.openwall.com/lists/oss-security/2021/05/04/6
https://www.qualys.com/2021/05/04/21nails/21nails.txt
https://git.exim.org/exim.git/commitdiff/605716b999a4ca6c7d5777ab7463058e9b055dc2