Exim CVE-2026-40684
Posted: Fri May 15, 2026 10:02 pm
In Exim before 4.99.2, on systems using musl libc (not glibc), an attacker can crash the connection instance when malformed DNS data is present in PTR records. This is caused by a dn_expand oddity in octal printing.
https://nvd.nist.gov/vuln/detail/CVE-2026-40684
https://nvd.nist.gov/vuln/detail/CVE-2026-40684