Hey folks,
There was a recent patch to a previously unknown exploit that the Exim team patched without truly knowing that they patched it.
--
https://blog.cpanel.com/exim-cve-2019-10149-protect-yourself/
--
If you're running cPanel server; chances are that you've already been patched -- as mentioned in the above article.
--
To confirm you are already running a patched version, you can run this command on the server:
rpm -q exim
The output will show you the Exim versions that are installed, and should look something like what’s below:
For Version 78: exim-4.92-1.cp1178.x86_64
For Version 80: exim-4.92-1.cp1180.x86_64
--
However; if you are on DirectAdmin; you may need to manually update as DirectAdmin does not automatically update.
You'll need to update Exim manually.
You can check Exim's version by running the following command:
--
exim --version
--
You'll receive output like so;
--
# exim --version
Exim version 4.92 #5 built 06-Jun-2019 18:11:13
--
You'll get more output than that, but the above is important and what you should pay attention too.
If the version is not 4.92; then you'll need to update!
To update DirectAdmin's Exim service you can perform the following over SSH
--
cd /usr/local/directadmin/custombuild
./build update
./build exim
--
If you get an error stating that you have not set exim configuration to be updated; then you'll do the following
--
cd /usr/local/directadmin/custombuild
./build update
./build set exim yes
./build set eximconf yes
./build set eximconf_release 4.5
./build set spamassassin yes
./build update
./build exim
--
Afterwards; just run the previous 'Exim --version' command to verify that you are on the updated version.
As always; if you would like us to check into it and/or perform the update for you -- Please open a support ticket!
There was a recent patch to a previously unknown exploit that the Exim team patched without truly knowing that they patched it.
--
https://blog.cpanel.com/exim-cve-2019-10149-protect-yourself/
--
If you're running cPanel server; chances are that you've already been patched -- as mentioned in the above article.
--
To confirm you are already running a patched version, you can run this command on the server:
rpm -q exim
The output will show you the Exim versions that are installed, and should look something like what’s below:
For Version 78: exim-4.92-1.cp1178.x86_64
For Version 80: exim-4.92-1.cp1180.x86_64
--
However; if you are on DirectAdmin; you may need to manually update as DirectAdmin does not automatically update.
You'll need to update Exim manually.
You can check Exim's version by running the following command:
--
exim --version
--
You'll receive output like so;
--
# exim --version
Exim version 4.92 #5 built 06-Jun-2019 18:11:13
--
You'll get more output than that, but the above is important and what you should pay attention too.
If the version is not 4.92; then you'll need to update!
To update DirectAdmin's Exim service you can perform the following over SSH
--
cd /usr/local/directadmin/custombuild
./build update
./build exim
--
If you get an error stating that you have not set exim configuration to be updated; then you'll do the following
--
cd /usr/local/directadmin/custombuild
./build update
./build set exim yes
./build set eximconf yes
./build set eximconf_release 4.5
./build set spamassassin yes
./build update
./build exim
--
Afterwards; just run the previous 'Exim --version' command to verify that you are on the updated version.
As always; if you would like us to check into it and/or perform the update for you -- Please open a support ticket!
