Unrated severityCISA KEVNVD Advisory· Published Sep 27, 2019· Updated Oct 21, 2025
CVE-2019-16928
CVE-2019-16928
Description
Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in string_vformat in string.c involving a long EHLO command.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- Exim/Eximdescription
- osv-coords6 versionspkg:rpm/opensuse/exim&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/exim&distro=openSUSE%20Tumbleweedpkg:rpm/suse/exim&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/exim&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/libspf2&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/libspf2&distro=SUSE%20Package%20Hub%2015%20SP2
< 4.94.2-lp152.8.3.1+ 5 more
- (no CPE)range: < 4.94.2-lp152.8.3.1
- (no CPE)range: < 4.94.2-4.2
- (no CPE)range: < 4.94.2-bp151.2.4.1
- (no CPE)range: < 4.94.2-bp152.6.4.1
- (no CPE)range: < 1.2.10-bp151.4.1
- (no CPE)range: < 1.2.10-bp152.5.1
Patches
Vulnerability mechanics
References
14- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EED7HM3MFIBAP5OIMJAFJ35JAJABTVSC/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3TJW4HPYH3O5HZCWGD6NSHTEBTTAPDC/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UY6HPRW7MR3KBQ5JFHH6OXM7YCZBJCOB/mitrevendor-advisoryx_refsource_FEDORA
- security.gentoo.org/glsa/202003-47mitrevendor-advisoryx_refsource_GENTOO
- usn.ubuntu.com/4141-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2019/dsa-4536mitrevendor-advisoryx_refsource_DEBIAN
- www.openwall.com/lists/oss-security/2019/09/28/1mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2019/09/28/2mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2019/09/28/3mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2019/09/28/4mitremailing-listx_refsource_MLIST
- bugs.exim.org/show_bug.cgimitrex_refsource_MISC
- git.exim.org/exim.git/commit/478effbfd9c3cc5a627fc671d4bf94d13670d65fmitrex_refsource_MISC
- lists.exim.org/lurker/message/20190927.032457.c1044d4c.en.htmlmitrex_refsource_MISC
- seclists.org/bugtraq/2019/Sep/60mitremailing-listx_refsource_BUGTRAQ
News mentions
0No linked articles in our index yet.