Bug 2116564 (CVE-2022-37452)

Summary: CVE-2022-37452 Exim: heap-based buffer overflow in host_name_lookup in host.c.
Product: [Other] Security Response Reporter: Zack Miele <zmiele>
Component: vulnerabilityAssignee: Nobody <nobody>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: bennie.joubert, dwmw2, jskarvad
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Zack Miele 2022-08-08 21:04:14 UTC 
Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.

https://www.exim.org/static/doc/security/
https://github.com/ivd38/exim_overflow
https://www.openwall.com/lists/oss-security/2022/08/06/8
https://github.com/Exim/exim/commit/d4bc023436e4cce7c23c5f8bb5199e178b4cc743
https://github.com/Exim/exim/wiki/EximSecurity
https://github.com/Exim/exim/compare/exim-4.94...exim-4.95