Search for packages
Package details: pkg:alpm/archlinux/exim@4.92.1-1
purl pkg:alpm/archlinux/exim@4.92.1-1
Next non-vulnerable version 4.92.3-1
Latest non-vulnerable version 4.98.2-1
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-e6jv-9x6c-aaad
Aliases:
CVE-2019-15846
Exim before 4.92.2 allows remote attackers to execute arbitrary code as root via a trailing backslash.
4.92.2-1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-41q3-efr7-aaae Exim 4.85 through 4.92 (fixed in 4.92.1) allows remote code execution as root in some unusual configurations that use the ${sort } expansion for items that can be controlled by an attacker (e.g., $local_part or $domain). CVE-2019-13917

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:44:24.671145+00:00 Arch Linux Importer Fixing VCID-41q3-efr7-aaae https://security.archlinux.org/AVG-1011 36.0.0
2025-03-28T07:44:24.338222+00:00 Arch Linux Importer Affected by VCID-e6jv-9x6c-aaad https://security.archlinux.org/AVG-1037 36.0.0
2024-09-18T01:59:29.725297+00:00 Arch Linux Importer Fixing VCID-41q3-efr7-aaae https://security.archlinux.org/AVG-1011 34.0.1
2024-09-18T01:59:29.385000+00:00 Arch Linux Importer Affected by VCID-e6jv-9x6c-aaad https://security.archlinux.org/AVG-1037 34.0.1
2024-07-16T23:12:52.516499+00:00 Arch Linux Importer Fixing VCID-41q3-efr7-aaae https://security.archlinux.org/AVG-1011 34.0.0rc4
2024-07-16T23:12:52.489803+00:00 Arch Linux Importer Affected by VCID-e6jv-9x6c-aaad https://security.archlinux.org/AVG-1037 34.0.0rc4
2024-01-03T22:25:46.448273+00:00 Arch Linux Importer Fixing VCID-41q3-efr7-aaae https://security.archlinux.org/AVG-1011 34.0.0rc1
2024-01-03T22:25:46.152239+00:00 Arch Linux Importer Affected by VCID-e6jv-9x6c-aaad https://security.archlinux.org/AVG-1037 34.0.0rc1