CVE-2010-2024
- Public Date:
- 2010-06-03
- Bugzilla:
- 600097: CVE-2010-2024 exim: race condition when MBX locking is enabled
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2010-2024 from the MITRE CVE dictionary dictionary and NIST NVD.
Statement
The Red Hat Security Response Team has rated this issue as having low security impact. While support for the MBX mailbox format is compiled into Exim, it is not used by default. MBX mailboxes are only useful when used with UW-IMAP or the Pine mail client, neither of which are provided with Red Hat Enterprise Linux. If the MBX format is used, this issue can be worked around by specifying "use_fcntl_lock" rather than "use_mbx_lock". We therefore have no plans to fix this flaw in Red Hat Enterprise Linux 4 or 5.
Affected Packages State
| Platform | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 5 | exim | Affected |
| Red Hat Enterprise Linux 4 | exim | Affected |
CVE description copyright © 2017, The MITRE Corporation
