Remote code execution flaw in exim <=4.80

We have updated our exim estate which runs Debian to fix this exploit.

Seeing as Debian pushed it out so rapid(normally they take ages) we need cPanel to be following shortly.

 

So, 11.30 LTS version is not affected, right? (exim-4.69-30)

 

Why you wrote "SHOULD" ? How we can be sure that we are on the safe side with exim-4.69-30?

 

Is Exim-4.69-30 from cPanel - not installed as custom but installed by default with cPanel - not affected? I read that there were experimental add for DKIM in 4.69, but I'm unsure if cPanel implemented this in default install. Article you've provided describes how to install DKIM with 4.70.

 

Hi Nick,

Could you confirm me that on 11.32 (with no custom RPMs) disabling "Allow DKIM verification for incoming messages" option is enough to be secure?

Thanks

 

Thanks Nick.

 

Nick,

I see the changelog says 11.32.5.13 is the latest version and that it resolves the CVE in question. But you mentioned 11.32.5.16. Is there going to be some additional update pushed related to this with a version update to 11.32.5.16, or was 11.32.5.16 simply a mistype on your part?

Mike

 

I read this one Exim Remote Code Execution Vulnerability Notification CVE-2012-5671 | cPanel, Inc. and cpanel recommend us to run upcp, does the /scripts/eximup --force is enough? I need to know this since the international bandwidth for my server is very low thus run upcp will takes time.

 

Exim Remote Code Execution Vulnerability Notification CVE-2012-5671 | cPanel, Inc.
you said that affected versions
* exim-4.76-1
* exim-4.77-0
* exim-4.77-1
* exim-4.80-0
* exim-4.80-1
why 4.80.1 is is not affected CVE-2012-5671

https://bugzilla.redhat.com/show_bug.cgi?id=869953

i am confused that 4.80.1 is safe or not

 

The class of attack is known as a "heap-based buffer overflow"; your OS might be built with protections to mitigate against these attacks.

we use grsecurity kernel. glad we did this because it stops buffer overflows. patching is important but its not proactive.