FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 18:35:25 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
3e0da406-aece-11e9-8d41-97657151f8c2	Exim -- RCE in ${sort} expansion Exim team report: A local or remote attacker can execute programs with root privileges - if you've an unusual configuration. If your configuration uses the ${sort } expansion for items that can be controlled by an attacker (e.g. $local_part, $domain). The default config, as shipped by the Exim developers, does not contain ${sort }. The vulnerability is exploitable either remotely or locally and could be used to execute other programs with root privilege. The ${sort } expansion re-evaluates its items. Exim 4.92.1 is not vulnerable. Discovery 2019-07-18 Entry 2019-07-25 Modified 2019-07-26 exim ge 4.85 lt 4.92.1 CVE-2019-13917 https://www.exim.org/static/doc/security/CVE-2019-13917.txt

VuXML ID

Description

3e0da406-aece-11e9-8d41-97657151f8c2

Exim -- RCE in ${sort} expansion

Exim team report:

A local or remote attacker can execute programs with root privileges - if you've an unusual configuration.

If your configuration uses the ${sort } expansion for items that can be controlled by an attacker (e.g. $local_part, $domain). The default config, as shipped by the Exim developers, does not contain ${sort }.

The vulnerability is exploitable either remotely or locally and could be used to execute other programs with root privilege. The ${sort } expansion re-evaluates its items.

Exim 4.92.1 is not vulnerable.

Discovery 2019-07-18
Entry 2019-07-25
Modified 2019-07-26
exim

ge 4.85 lt 4.92.1

CVE-2019-13917
https://www.exim.org/static/doc/security/CVE-2019-13917.txt