[CLSA-2026:1778690104] exim: Fix of CVE-2026-40685
Type:
security
Severity:
Critical
Release date:
2026-05-13 16:35:09 UTC
Description:
- CVE-2026-40685: fix OOB heap write in dewrap() when expanding header ending with stray backslash
Updated packages:
  • exim-4.99.1-1.el9.tuxcare.els2.x86_64.rpm
    sha:2a7ddcd7b2ad338c8290c562eed3b872912e9b5cb4f4f1a6e21cf56204b2aa51
  • exim-greylist-4.99.1-1.el9.tuxcare.els2.x86_64.rpm
    sha:06ff645b5a495f4bc9d58e3bffb699e1334e50159a3e03c58913269e27a183ac
  • exim-mon-4.99.1-1.el9.tuxcare.els2.x86_64.rpm
    sha:ce5ad7c371ae36dc005c0927e6a7f3ea665049be6411c914be2dd9f14659e9aa
  • exim-mysql-4.99.1-1.el9.tuxcare.els2.x86_64.rpm
    sha:f4435200c9dfa33e21cddb3ade6e16c74bda78a01748dfbc3ef17e1f00c0bad9
  • exim-pgsql-4.99.1-1.el9.tuxcare.els2.x86_64.rpm
    sha:3fbbcb893643fb64d0a52ddc128da1da75cea216ccb4887c017f696972d36c68
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.