exim4 vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the exim4 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
L Arbitrary Code Injection	*
C Arbitrary Argument Injection	<4.89-2+deb9u8
C Out-of-Bounds	<4.89-2+deb9u8
H Out-of-bounds Read	<4.89-2+deb9u8
H Out-of-bounds Read	<4.89-2+deb9u8
C Out-of-Bounds	<4.89-2+deb9u8
H CVE-2020-28021	<4.89-2+deb9u8
H Improper Initialization	<4.89-2+deb9u8
C Integer Overflow or Wraparound	<4.89-2+deb9u8
C Integer Overflow or Wraparound	<4.89-2+deb9u8
H CVE-2020-28015	<4.89-2+deb9u8
M CVE-2020-28014	<4.89-2+deb9u8
H Out-of-bounds Write	<4.89-2+deb9u8
H Exposure of Resource to Wrong Sphere	<4.89-2+deb9u8
H Out-of-bounds Write	<4.89-2+deb9u8
H Integer Overflow or Wraparound	<4.89-2+deb9u8
H Improper Privilege Management	<4.89-2+deb9u8
H Link Following	<4.89-2+deb9u8
H Out-of-bounds Read	<4.89-2+deb9u7
C CVE-2019-15846	<4.89-2+deb9u6
C Improper Data Handling	<4.89-2+deb9u5
C Improper Input Validation	<4.89-2+deb9u4
C Out-of-Bounds	<4.89-2+deb9u3
H Loop with Unreachable Exit Condition ('Infinite Loop')	<4.89-2+deb9u2
C Use After Free	<4.89-2+deb9u2
M Improper Resource Shutdown or Release	<4.89-2+deb9u1
M Key Management Errors	<4.88~RC6-2
H Access Restriction Bypass	<4.86.2-1
L Numeric Errors	<4.82.1-2
L Improper Input Validation	<4.82.1-1
M Out-of-Bounds	<4.80-5.1
H Use of Externally-Controlled Format String	<4.75-3
H Improper Input Validation	<4.76-1
H Improper Input Validation	<4.72-4
H Out-of-Bounds	<4.70-1
H Access Restriction Bypass	<4.72-3
L Race Condition	<4.72-1
L Race Condition	<4.72-1
M CVE-2005-0022	<4.34-10
H CVE-2005-0021	<4.34-10
H CVE-2004-0399	<4.33-1
H CVE-2004-0400	<4.33-1
H CVE-2002-1381	<4.11-0.0.1