[case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

**cpanelnick** · 12-10-2010, 12:56 AM

Critical: Exim security update (CVE-2010-4345) - cPanel Inc.

**chirpy** · 12-10-2010, 02:02 AM

Originally Posted by mohan

Starting exim alt spool: exim: -D is not available in this Exim binary
[FAILED]

If you're seeing that and you are using the ConfigServer MailScanner installer you need to switch it In/Out scanning:
ConfigServer Blog » New MailScanner Script v2.79

**cpanelnick** · 12-10-2010, 05:28 PM

Exim Remote Memory Corruption Vulnerability Notification (CVE-2010-4344) - cPanel Inc.

**cpanelnick** · 12-10-2010, 05:34 PM

Discussion of this topic has been moved here:
http://forums.cpanel.net/f185/exim-0...on-178461.html

**cpanelnick** · 12-10-2010, 05:49 PM

For the avoidance of doubt, there are two rpm updates (one for each CVE). Please make sure you have the latest ones (-26 or -5):

Systems configured to use Maildir: Exim 4.69-26
Systems configured to use mbox (deprecated): Exim 4.63-5

# rpm -qi exim
Name : exim Relocations: (not relocatable)
Version : 4.69 Vendor: (none)
Release : 26_cpanel_maildir Build Date: Fri 10 Dec 2010 10:59:45 AM CST
...

Forums

Thread: [case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

LinkBack

Thread Tools

[case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

re: [case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

re: [case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

Re: [case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

Re: [case 45290] Critical Exim Security Updates (CVE-2010-4344,CVE-2010-4345)

Similar Threads

Thanks for a great 2010!

Exim Remote Memory Corruption Vulnerability Notification (CVE-2010-4344)

cPanel & WHM

Enkompass

Help

Community

Company

Connect with Us