CVE-2022-37451

Updated: 2023-11-07 19:53:25.115565

Description:

Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.5

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS exim 4.92.3 7.5 HIGH Released CLSA-2022:1660761670 2022-08-29 11:02:38
CentOS 8.4 ELS exim 4.94.2 7.5 HIGH Released CLSA-2022:1661445629 2022-08-25 14:02:37
CentOS 8.5 ELS exim 4.94.2 7.5 HIGH Released CLSA-2022:1661445415 2022-08-25 14:02:37
CloudLinux 6 ELS exim 4.92.3 7.5 HIGH Released CLSA-2022:1660821067 2022-08-29 11:02:38
Oracle Linux 6 ELS exim 4.92.3 7.5 HIGH Released CLSA-2022:1660759272 2022-08-17 17:02:29
Ubuntu 16.04 ELS exim 4.86.2 7.5 HIGH Released CLSA-2022:1661173443 2022-08-22 11:02:46
Ubuntu 18.04 ELS exim 4.90.1 7.5 HIGH Not Vulnerable 2023-06-16 11:06:58