ELA-160-1 exim4 security update

bad handling of backslash

2019-09-06
Packageexim4
Version4.80-7+deb7u7
Related CVE CVE-2019-15846

Zerons and Qualys discovered that a buffer overflow triggerable in the TLS negotiation code of the Exim mail transport agent could result in the execution of arbitrary code with root privileges.

For Debian 7 Wheezy, these problems have been fixed in version 4.80-7+deb7u7.

We recommend that you upgrade your exim4 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/