Under certain circumstances it's possible for remote attacker to leak private information. Affected versions: 4.69 -> 4.87 Upstream bug: https://bugs.exim.org/show_bug.cgi?id=1996 CVE assignment: http://seclists.org/oss-sec/2016/q4/694
Created exim tracking bugs for this issue: Affects: fedora-all [bug 1405323] Affects: epel-all [bug 1405324]
External Reference: https://exim.org/static/doc/CVE-2016-9963.txt
Statement: This flaw does not affect the version of Exim shipped with Red Hat Enterprise Linux 5 because it is not built with DKIM (DomainKeys Identified Mail) support.