Our documentation is getting an overhaul! We would like your input! Click here to take a look at the beta launch of our new documentation site! Only cPanel & WHM version 82 documentation exists on our beta at this time. 84 will be added to the new site soon! Leave your feedback here: https://go.cpanel.net/docsfeedback
CVE-2019-15846 Exim - cPanel Knowledge Base - cPanel Documentation
Page tree
Skip to end of metadata
Go to start of metadata

PENDING  


Background Information 

On Wednesday, September 4, 2019, Exim maintainers announced that they received a report of a potential remote exploit in Exim in versions up to and including 4.92.1.

As of Friday, September 6, 2019, Exim has published a fix for CVE-2019-15846.


We will continue to update this page as more information becomes available.


Impact

According to Exim development:

If your Exim server accepts TLS connections, it is vulnerable. This does
not depend on the TLS libray, so both, GnuTLS and OpenSSL are affected.
The vulnerability is exploitable by sending a SNI ending in a
backslash-null sequence during the initial TLS handshake. 


Releases

The following versions of cPanel & WHM were patched to have the correct version of Exim.

All previous versions of cPanel & WHM below the stated versions are potentially vulnerable to a root RCE.


TIERVERSION
7878.0.38
8282.0.14
EDGE83.9999.151
CURRENT82.0.14
RELEASE82.0.14
STABLE82.0.14


How to determine if your server is up to date

The updated RPMs provided by cPanel should be at least 4.92-3 on version 82 as well as the EDGE tier, and 4.92-5 on LTS version 78.

rpm -q exim


Expected response on version 82 and the EDGE tier:

exim-4.92-3.cp1180.x86_64

Expected response on LTS version 78:

exim-4.92-5.cp1178.x86_64

What to do if you are not up to date.

If your server is not running one of the above versions, update immediately. 

To upgrade your server, use WHM's interface (WHM >> Home >> cPanel >> Upgrade to Latest Version).

Alternatively, you can run the commands below to upgrade your server from the command line:

/scripts/upcp
/scripts/check_cpanel_rpms --fix --long-list


Verify the new Exim RPM was installed:


 Run the following:

rpm -q exim

The output on version 82 and the EDGE tier should resemble below:

exim-4.92-3.cp1180.x86_64

The output on LTS version 78 should resemble below:

exim-4.92-5.cp1178.x86_64



Run the following to ensure the CVE is in the changelog:

rpm -q --changelog exim | grep CVE-2019-15846


The output on LTS version 78, version 82, and the EDGE tier should resemble below:

- Applied upstream patch for CVE-2019-15846


If you are still experiencing issues or need additional help, please contact 
cPanel support.

  • No labels