SOLVED New Critical Exim Flaw Exposes Email Servers to Remote Attacks

ItsMattSon

Well-Known Member
Sep 5, 2016
176
37
103
Perth
cPanel Access Level
Root Administrator
Hi cPanel,

Any idea when we'll see Exim 4.92.3 come down from upcp script?

This would be to address the new Exim flaw, which was mentioned online on September 30th, which I found here:

Apologies if there is another thread for this. I did do a quick search with no success.

Thanks in advance.
 

Infopro

Well-Known Member
May 20, 2003
17,113
507
613
Pennsylvania
cPanel Access Level
Root Administrator
Twitter
There is another thread here you might find useful:
 

ItsMattSon

Well-Known Member
Sep 5, 2016
176
37
103
Perth
cPanel Access Level
Root Administrator
Thanks Infopro. As suggested, I ran "whmapi1 installed_versions packages=1|grep exim" and it shows as 4.92-4, but I cannot tell if I am running 4.92.3 from that unfortunately.

Would you happen to know what to do from here? Or if that version is correct, how to know it's the version I'm looking for for next time?
 

ItsMattSon

Well-Known Member
Sep 5, 2016
176
37
103
Perth
cPanel Access Level
Root Administrator
Right, but it does not help me determine if Exim is 4.92.1, 4.92.2 or 4.92.3 (latest version). The minor revision number is important here because 4.92.2 is affected by this flaw whereas 4.92.3 is not. That's why I was hoping you could tell me how to check the minor revision I'm running, if perhaps possible.

Thanks in advance.