ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
- CVEs
- Documentation
ELS for Languages
- CVEs
- Releases
- Projects
- Documentation

CVE-2022-37452

Updated: 2023-11-04 21:11:26.95364

Description:

Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x		0
CVSS Version 3.x	CRITICAL	9.8

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
CentOS 6 ELS	exim	4.92.3	9.8	CRITICAL	Released	CLSA-2022:1660761670	2022-08-29 11:02:39
CentOS 8.4 ELS	exim	4.94.2	9.8	CRITICAL	Not Vulnerable		2022-08-15 05:02:38
CentOS 8.5 ELS	exim	4.94.2	9.8	CRITICAL	Not Vulnerable		2022-08-15 05:02:37
CloudLinux 6 ELS	exim	4.92.3	9.8	CRITICAL	Released	CLSA-2022:1660821067	2022-08-29 11:02:39
Oracle Linux 6 ELS	exim	4.92.3	9.8	CRITICAL	Released	CLSA-2022:1660759272	2022-08-17 17:02:29
Ubuntu 16.04 ELS	exim	4.86.2	9.8	CRITICAL	Released	CLSA-2022:1661173443	2022-08-22 11:02:47
Ubuntu 18.04 ELS	exim	4.90.1	9.8	CRITICAL	Not Vulnerable		2023-05-30 08:57:40