- ------------------------------------------------------------------------- Debian LTS Advisory DLA-3082-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler August 27, 2022 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : exim4 Version : 4.92-8+deb10u7 CVE ID : CVE-2022-37452 It was discovered that in Exim, a mail transport agent, handling an e-mail can cause a heap-based buffer overflow in some situations. An attacker can cause a denial-of-service (DoS) and possibly execute arbitrary code. For Debian 10 buster, this problem has been fixed in version 4.92-8+deb10u7. We recommend that you upgrade your exim4 packages. For the detailed security status of exim4 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/exim4 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS