CVE-2016-1531

Publication date 2 March 2016

Last updated 25 August 2025

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

7.0 · High

Score breakdown

Description

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument.

Read the notes from the security team

Status

Package Ubuntu Release Status
exim4 15.10 wily
Fixed 4.86-3ubuntu1.1
14.04 LTS trusty
Fixed 4.82-3ubuntu2.1
12.04 LTS precise
Fixed 4.76-3ubuntu3.3

Notes

mdeslaur

patches introduce behaviour change that my break existing setups must also ship two follow-up patches: 1- Don't issue env warning if env is empty 2- Store the initial working directory

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
exim4

Severity score breakdown

Parameter Value
Base score 7.0 · High
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References

Related Ubuntu Security Notices (USN)

Other references