Exim 4.99: Remote heap corruption https://www.openwall.com/lists/oss-security/2025/12/10/1 In vulnerable configurations, a remote, unauthenticated attacker can achieve heap corruption. No exploit for remote code execution yet, but it may be possible. No further details published yet, until the fix goes public.
See Tweet