Bug 1204427 (CVE-2022-3559) - VUL-0: CVE-2022-3559: exim: use after free in processing of the component Regex Handler
Summary: VUL-0: CVE-2022-3559: exim: use after free in processing of the component Reg...
Status: RESOLVED FIXED
Alias: CVE-2022-3559
Product: openSUSE Distribution
Classification: openSUSE
Component: Security (show other bugs)
Version: Leap 15.5
Hardware: Other Other
: P3 - Medium : Major (vote)
Target Milestone: ---
Assignee: Peter Wullinger
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/345424/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-10-18 09:55 UTC by Carlos López
Modified: 2024-07-15 17:05 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Carlos López 2022-10-18 09:55:56 UTC 
rh#2135611

This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this issue. The identifier VDB-211073 was assigned to this vulnerability.

Reference:

https://git.exim.org/exim.git/commit/4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2

References:
https://bugzilla.redhat.com/show_bug.cgi?id=2135611
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3559
https://www.cve.org/CVERecord?id=CVE-2022-3559
https://git.exim.org/exim.git/commit/4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2
https://vuldb.com/?id.211073
Comment 1 Carlos López 2022-10-18 09:59:42 UTC 
Relevant for:
- openSUSE:Backports:SLE-15-SP3:Update
- openSUSE:Backports:SLE-15-SP4:Update
- openSUSE:Backports:SLE-15-SP5:Update
- openSUSE:Factory

CC dmueller for Backports, please reassign if necessary.
Comment 2 OBSbugzilla Bot 2022-10-18 12:25:04 UTC 
This is an autogenerated message for OBS integration:
This bug (1204427) was mentioned in
https://build.opensuse.org/request/show/1029728 Factory / exim
Comment 3 Peter Wullinger 2022-10-18 12:35:32 UTC 
Backported patch is in server:mail and submitted to factory.

Note that the original patch does not apply directly and neither does the rebased version for exim 4.95 as mentioned in the original bug report. We have our own patch until 4.97 is released.
Comment 4 OBSbugzilla Bot 2022-10-18 14:05:02 UTC 
This is an autogenerated message for OBS integration:
This bug (1204427) was mentioned in
https://build.opensuse.org/request/show/1029758 Backports:SLE-15-SP3 / exim
https://build.opensuse.org/request/show/1029759 Backports:SLE-12-SP4 / exim
https://build.opensuse.org/request/show/1029760 Backports:SLE-15-SP4 / exim
Comment 5 Swamp Workflow Management 2022-10-30 20:17:51 UTC 
openSUSE-SU-2022:10168-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1204427
CVE References: CVE-2022-3559
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP4 (src):    exim-4.94.2-bp154.2.3.1
Comment 6 Swamp Workflow Management 2022-11-08 23:21:03 UTC 
openSUSE-SU-2022:10191-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1204427
CVE References: CVE-2022-3559
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP3 (src):    exim-4.94.2-bp153.5.1
Comment 7 Peter Wullinger 2023-10-04 06:35:43 UTC 
patches are available and updates released
Comment 8 OBSbugzilla Bot 2024-07-15 17:05:23 UTC 
This is an autogenerated message for OBS integration:
This bug (1204427) was mentioned in
https://build.opensuse.org/request/show/1187597 Backports:SLE-15-SP6 / exim