CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory.
Configurations

Configuration 1

cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:*

Information

Published : 2021-05-06 01:15

Updated : 2021-05-10 04:11


NVD link : CVE-2020-28025

Mitre link : CVE-2020-28025

Products Affected
No products.
CWE
CWE-125

Out-of-bounds Read