--===============6321543519563575741==
Content-Type: multipart/signed; micalg=pgp-sha512;
	protocol="application/pgp-signature";
 boundary="Kj7319i9nmIyA2yE"
Content-Disposition: inline


--Kj7319i9nmIyA2yE
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

==========================================================================
Ubuntu Security Notice USN-4934-2
May 06, 2021

exim4 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM

Summary:

Several security issues were fixed in Exim.

Software Description:
- exim4: Exim is a mail transport agent

Details:

USN-4934-1 fixed several vulnerabilities in Exim. This update provides
the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
CVE-2020-28026 only affected Ubuntu 16.04 ESM.

Original advisory details:

 It was discovered that Exim contained multiple security issues. An attacker
 could use these issues to cause a denial of service, execute arbitrary
 code remotely, obtain sensitive information, or escalate local privileges.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
  exim4-base                      4.86.2-2ubuntu2.6+esm1
  exim4-daemon-heavy              4.86.2-2ubuntu2.6+esm1
  exim4-daemon-light              4.86.2-2ubuntu2.6+esm1

Ubuntu 14.04 ESM:
  exim4-base                      4.82-3ubuntu2.4+esm3
  exim4-daemon-heavy              4.82-3ubuntu2.4+esm3
  exim4-daemon-light              4.82-3ubuntu2.4+esm3

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-4934-2
  https://ubuntu.com/security/notices/USN-4934-1
  CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28011,
  CVE-2020-28012, CVE-2020-28013, CVE-2020-28014, CVE-2020-28015,
  CVE-2020-28016, CVE-2020-28017, CVE-2020-28020, CVE-2020-28022,
  CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216

--Kj7319i9nmIyA2yE
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=J6A7
-----END PGP SIGNATURE-----

--Kj7319i9nmIyA2yE--


--===============6321543519563575741==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce