csaf_opensuse - opensuse-su-2023:0304-1

Vulnerability from csaf_opensuse

Published

2023-10-18 12:24

Modified

2023-10-18 12:24

Summary

Security update for exim

Notes

Title of the patch

Security update for exim

Description of the patch

This update for exim fixes the following issues: - CVE-2023-42117: Fixes Improper Neutralization of Special Elements Remote Code Execution Vulnerability (boo#1215787) - CVE-2023-42119: Fixes dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability (boo#1215789)

Patchnames

openSUSE-2023-304

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "critical",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for exim",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "This update for exim fixes the following issues:\n\n- CVE-2023-42117: Fixes Improper Neutralization of Special Elements Remote Code Execution Vulnerability (boo#1215787)\n- CVE-2023-42119: Fixes dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability (boo#1215789)\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "openSUSE-2023-304",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2023_0304-1.json",
         },
         {
            category: "self",
            summary: "URL for openSUSE-SU-2023:0304-1",
            url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ODYGABN4WNOEIQEQK65BFN7BN3B4NPNW/",
         },
         {
            category: "self",
            summary: "E-Mail link for openSUSE-SU-2023:0304-1",
            url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ODYGABN4WNOEIQEQK65BFN7BN3B4NPNW/",
         },
         {
            category: "self",
            summary: "SUSE Bug 1215787",
            url: "https://bugzilla.suse.com/1215787",
         },
         {
            category: "self",
            summary: "SUSE Bug 1215789",
            url: "https://bugzilla.suse.com/1215789",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-42117 page",
            url: "https://www.suse.com/security/cve/CVE-2023-42117/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-42119 page",
            url: "https://www.suse.com/security/cve/CVE-2023-42119/",
         },
      ],
      title: "Security update for exim",
      tracking: {
         current_release_date: "2023-10-18T12:24:07Z",
         generator: {
            date: "2023-10-18T12:24:07Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "openSUSE-SU-2023:0304-1",
         initial_release_date: "2023-10-18T12:24:07Z",
         revision_history: [
            {
               date: "2023-10-18T12:24:07Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "exim-4.94.2-bp154.2.9.1.aarch64",
                        product: {
                           name: "exim-4.94.2-bp154.2.9.1.aarch64",
                           product_id: "exim-4.94.2-bp154.2.9.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximon-4.94.2-bp154.2.9.1.aarch64",
                        product: {
                           name: "eximon-4.94.2-bp154.2.9.1.aarch64",
                           product_id: "eximon-4.94.2-bp154.2.9.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                        product: {
                           name: "eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                           product_id: "eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "exim-4.94.2-bp154.2.9.1.ppc64le",
                        product: {
                           name: "exim-4.94.2-bp154.2.9.1.ppc64le",
                           product_id: "exim-4.94.2-bp154.2.9.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximon-4.94.2-bp154.2.9.1.ppc64le",
                        product: {
                           name: "eximon-4.94.2-bp154.2.9.1.ppc64le",
                           product_id: "eximon-4.94.2-bp154.2.9.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                        product: {
                           name: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                           product_id: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "exim-4.94.2-bp154.2.9.1.s390x",
                        product: {
                           name: "exim-4.94.2-bp154.2.9.1.s390x",
                           product_id: "exim-4.94.2-bp154.2.9.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximon-4.94.2-bp154.2.9.1.s390x",
                        product: {
                           name: "eximon-4.94.2-bp154.2.9.1.s390x",
                           product_id: "eximon-4.94.2-bp154.2.9.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximstats-html-4.94.2-bp154.2.9.1.s390x",
                        product: {
                           name: "eximstats-html-4.94.2-bp154.2.9.1.s390x",
                           product_id: "eximstats-html-4.94.2-bp154.2.9.1.s390x",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390x",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "exim-4.94.2-bp154.2.9.1.x86_64",
                        product: {
                           name: "exim-4.94.2-bp154.2.9.1.x86_64",
                           product_id: "exim-4.94.2-bp154.2.9.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximon-4.94.2-bp154.2.9.1.x86_64",
                        product: {
                           name: "eximon-4.94.2-bp154.2.9.1.x86_64",
                           product_id: "eximon-4.94.2-bp154.2.9.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "eximstats-html-4.94.2-bp154.2.9.1.x86_64",
                        product: {
                           name: "eximstats-html-4.94.2-bp154.2.9.1.x86_64",
                           product_id: "eximstats-html-4.94.2-bp154.2.9.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Package Hub 15 SP4",
                        product: {
                           name: "SUSE Package Hub 15 SP4",
                           product_id: "SUSE Package Hub 15 SP4",
                        },
                     },
                     {
                        category: "product_name",
                        name: "openSUSE Leap 15.4",
                        product: {
                           name: "openSUSE Leap 15.4",
                           product_id: "openSUSE Leap 15.4",
                           product_identification_helper: {
                              cpe: "cpe:/o:opensuse:leap:15.4",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.aarch64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.ppc64le as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.s390x as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.x86_64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.aarch64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.ppc64le as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.s390x as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.x86_64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.aarch64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.s390x as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.x86_64 as component of SUSE Package Hub 15 SP4",
               product_id: "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "SUSE Package Hub 15 SP4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.aarch64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.ppc64le as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.s390x as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "exim-4.94.2-bp154.2.9.1.x86_64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "exim-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.aarch64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.ppc64le as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.s390x as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximon-4.94.2-bp154.2.9.1.x86_64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "eximon-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.aarch64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.aarch64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.s390x as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.s390x",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "eximstats-html-4.94.2-bp154.2.9.1.x86_64 as component of openSUSE Leap 15.4",
               product_id: "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            },
            product_reference: "eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            relates_to_product_reference: "openSUSE Leap 15.4",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-42117",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-42117",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-17554.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.x86_64",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.x86_64",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-42117",
               url: "https://www.suse.com/security/cve/CVE-2023-42117",
            },
            {
               category: "external",
               summary: "SUSE Bug 1215787 for CVE-2023-42117",
               url: "https://bugzilla.suse.com/1215787",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.x86_64",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.x86_64",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2023-10-18T12:24:07Z",
               details: "important",
            },
         ],
         title: "CVE-2023-42117",
      },
      {
         cve: "CVE-2023-42119",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-42119",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the service account.\n. Was ZDI-CAN-17643.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.x86_64",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.x86_64",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
               "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.x86_64",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
               "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-42119",
               url: "https://www.suse.com/security/cve/CVE-2023-42119",
            },
            {
               category: "external",
               summary: "SUSE Bug 1215789 for CVE-2023-42119",
               url: "https://bugzilla.suse.com/1215789",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:exim-4.94.2-bp154.2.9.1.x86_64",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:eximon-4.94.2-bp154.2.9.1.x86_64",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
                  "SUSE Package Hub 15 SP4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:exim-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:eximon-4.94.2-bp154.2.9.1.x86_64",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.aarch64",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.ppc64le",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.s390x",
                  "openSUSE Leap 15.4:eximstats-html-4.94.2-bp154.2.9.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2023-10-18T12:24:07Z",
               details: "low",
            },
         ],
         title: "CVE-2023-42119",
      },
   ],
}

cve-2023-42119

Vulnerability from cvelistv5

Published

2024-05-03 02:13

Modified

2024-09-18 18:30

Severity ?

3.1 (Low) - CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the service account. . Was ZDI-CAN-17643.

References

▼	URL	Tags
	https://www.zerodayinitiative.com/advisories/ZDI-23-1473/	x_research-advisory

Impacted products

	Vendor	Product	Version
	Exim	Exim	Version: exim 4.96-RC0-14-24b8ed847-XX

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-42119",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-07-05T16:29:47.287691Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-07-05T20:58:39.448Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T19:16:50.501Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "ZDI-23-1473",
                  tags: [
                     "x_research-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-23-1473/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "unknown",
               product: "Exim",
               vendor: "Exim",
               versions: [
                  {
                     status: "affected",
                     version: "exim 4.96-RC0-14-24b8ed847-XX",
                  },
               ],
            },
         ],
         dateAssigned: "2023-09-06T16:25:45.489-05:00",
         datePublic: "2023-09-27T17:21:19.694-05:00",
         descriptions: [
            {
               lang: "en",
               value: "Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the service account.\n. Was ZDI-CAN-17643.",
            },
         ],
         metrics: [
            {
               cvssV3_0: {
                  baseScore: 3.1,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.0",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-125",
                     description: "CWE-125: Out-of-bounds Read",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-09-18T18:30:12.268Z",
            orgId: "99f1926a-a320-47d8-bbb5-42feb611262e",
            shortName: "zdi",
         },
         references: [
            {
               name: "ZDI-23-1473",
               tags: [
                  "x_research-advisory",
               ],
               url: "https://www.zerodayinitiative.com/advisories/ZDI-23-1473/",
            },
         ],
         source: {
            lang: "en",
            value: "Anonymous",
         },
         title: "Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "99f1926a-a320-47d8-bbb5-42feb611262e",
      assignerShortName: "zdi",
      cveId: "CVE-2023-42119",
      datePublished: "2024-05-03T02:13:26.751Z",
      dateReserved: "2023-09-06T21:14:24.436Z",
      dateUpdated: "2024-09-18T18:30:12.268Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-42117

Vulnerability from cvelistv5

Published

2024-05-03 02:13

Modified

2024-08-02 19:16

Severity ?

8.1 (High) - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-17554.

References

▼	URL	Tags
	https://www.zerodayinitiative.com/advisories/ZDI-23-1471/	x_research-advisory

Impacted products

	Vendor	Product	Version
	Exim	Exim	Version: 4.96-RC1-11-315206fbf

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            affected: [
               {
                  cpes: [
                     "cpe:2.3:a:exim:exim:-:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "exim",
                  vendor: "exim",
                  versions: [
                     {
                        status: "affected",
                        version: "-",
                     },
                  ],
               },
            ],
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-42117",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-05-03T16:58:53.804935Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-06-04T17:25:23.895Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T19:16:50.392Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "ZDI-23-1471",
                  tags: [
                     "x_research-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-23-1471/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "unknown",
               product: "Exim",
               vendor: "Exim",
               versions: [
                  {
                     status: "affected",
                     version: "4.96-RC1-11-315206fbf",
                  },
               ],
            },
         ],
         dateAssigned: "2023-09-06T16:25:45.470-05:00",
         datePublic: "2023-09-27T17:21:09.875-05:00",
         descriptions: [
            {
               lang: "en",
               value: "Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-17554.",
            },
         ],
         metrics: [
            {
               cvssV3_0: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-138",
                     description: "CWE-138: Improper Neutralization of Special Elements",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-05-03T02:13:25.385Z",
            orgId: "99f1926a-a320-47d8-bbb5-42feb611262e",
            shortName: "zdi",
         },
         references: [
            {
               name: "ZDI-23-1471",
               tags: [
                  "x_research-advisory",
               ],
               url: "https://www.zerodayinitiative.com/advisories/ZDI-23-1471/",
            },
         ],
         source: {
            lang: "en",
            value: "Anonymous",
         },
         title: "Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "99f1926a-a320-47d8-bbb5-42feb611262e",
      assignerShortName: "zdi",
      cveId: "CVE-2023-42117",
      datePublished: "2024-05-03T02:13:25.385Z",
      dateReserved: "2023-09-06T21:14:24.436Z",
      dateUpdated: "2024-08-02T19:16:50.392Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from csaf_opensuse

cve-2023-42119

Vulnerability from cvelistv5

cve-2023-42117

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature