An attacker could send crafted input to Exim and cause it to run programs as the Exim user.
It was discovered that the Exim daemon did not correctly handle certain DKIM identities. A remote attacker could send specially crafted email to run arbitrary code as the Exim user.
25 May 2011
A security issue affects these releases of Ubuntu and its derivatives:
An attacker could send crafted input to Exim and cause it to run programs as the Exim user.
It was discovered that the Exim daemon did not correctly handle certain DKIM identities. A remote attacker could send specially crafted email to run arbitrary code as the Exim user.
The problem can be corrected by updating your system to the following package versions:
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.