exim: overflow in DKIM handling fixed
This update fixes a remotely exploitable overflow in DKIM handling.
-
Submitted by
Lars Müller (lmuelle)
Fixed bugs
bnc#786652
VUL-0: exim: remote heap-based buffer overflow in DNS decode (as used for DKIM)
bnc#670711
AUDIT-0: Owner of /var/log/exim
CVE-CVE-2011-1764
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logg
