[bitfolk] Make sure to upgrade your Exim

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
 
 
Author: Andy Smith
Date:  
To: users
Subject: [bitfolk] Make sure to upgrade your Exim

Reply to this message
gpg: Signature made Thu Jun 6 14:53:29 2019 UTC
gpg: using DSA key 2099B64CBF15490B
gpg: Good signature from "Andy Smith <andy@strugglers.net>" [unknown]
gpg: aka "Andrew James Smith <andy@strugglers.net>" [unknown]
gpg: aka "Andy Smith (UKUUG) <andy.smith@ukuug.org>" [unknown]
gpg: aka "Andy Smith (BitFolk Ltd.) <andy@bitfolk.com>" [unknown]
gpg: aka "Andy Smith (Linux User Groups UK) <andy@lug.org.uk>" [unknown]
gpg: aka "Andy Smith (Cernio Technology Cooperative) <andy.smith@cernio.com>" [unknown]
Hello,

If you run Exim and have local users you will want to make sure that
it is upgraded as a matter of urgency as there is a trivial
arbitrary command execution as root bug in most recent versions: 

    https://seclists.org/oss-sec/2019/q2/152


Even if you are the only local user you should upgrade as it's
possible, though more difficult, to exploit remotely.

Cheers,
Andy

--
https://bitfolk.com/ -- No-nonsense VPS hosting
This message was posted to the following mailing lists:
users
Mailing List Info | Nearby Messages		<-Re: [bitfolk] Filesystems/volume management for home serversRe: [bitfolk] Filesystems/volume management for home servers->
Bitfolk Mailing List Archive administrated by List AdminLurker (version 2.3)