Headline
CVE-2020-12783: git.exim.org Git - exim.git/commit
Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.
Fix SPA authenticator, checking client-supplied data before using it. Bug 2571
Master Exim source repository
RSS Atom
Related news
CVE-2020-28017
Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.