Security Update:Exim has released patches to address vulnerabilities.
Date and Time
Exim has released patches to address vulnerabilities. Although we are not aware of the use of this application, out of abundance of caution, we are sending this update.
Advanced Users: For a complete description of the vulnerabilities and effected systems, visit:
- A local or remote attacker can execute programs with root privileges - CVE-2019-15846: http://exim.org/static/doc/security/CVE-2019-15846.txt
- Exim 4.92.1 and prior versions
WHAT’S THE PROBLEM?
A remote attacker could exploit some of these vulnerabilities to take control of an affected email system.
WHAT DO I NEED TO DO?
Users and administrators are encouraged to go to the link listed above and apply the necessary updates.
- IT SECURITY a thttps://it.ucsf.edu/security