Fedora 40: exim Update for CVE 2025-30232 - Critical Escalation Fix
fedora
April 5, 2025
This is an update fixing CVE 2025-30232.
Summary
Exim is a message transfer agent (MTA) developed at the University of
Cambridge for use on Unix systems connected to the Internet. It is
freely available under the terms of the GNU General Public Licence. In
style it is similar to Smail 3, but its facilities are more
general. There is a great deal of flexibility in the way mail can be
routed, and there are extensive facilities for checking incoming
mail. Exim can be installed in place of sendmail, although the
configuration of exim is quite different to that of sendmail.
Update Information:
This is an update fixing CVE 2025-30232.
Change Log
* Wed Mar 26 2025 Jaroslav Å karvada
References
[ 1 ] Bug #2355643 - CVE-2025-30232 exim: privilege escalation via use-after-free [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2355643
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3a56fe6159' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: exim
Product: Fedora 40
Version: 4.98.2
Release: 1.fc40
Summary: The exim mail transfer agent
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!