[3.7] exim: infinite loop and stack exhaustion in receive_msg function via vectors involving BDAT commands (CVE-2017-16944)| ID: oval:org.secpod.oval:def:1800774 | Date: (C)2018-03-29 (M)2022-08-31 |
| Class: PATCH | Family: unix |
The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service via vectors involving BDAT commands and an improper check for a "." character signifying the end of the content, related to the bdat_getc function.
| Platform: |
| Alpine Linux 3.7 |
