Situation
The vulnerability, tracked as CVE-2026-45185, aka Dead.Letter, has been described as a use-after-free vulnerability in Exim's binary data transmission (BDAT) message body parsing when a TLS connection is handled by GnuTLS.
This issue affects Exim: 4.97+
Impact
None on your cPanel server, as we do not explicitly set USE_GNUTLS when building our version of Exim. Our version has a dependency on OpenSSL and not GnuTLS.
Call to Action
None at this time, as cPanel is not affected by this GnuTLS vulnerability.
Comments
0 comments
Article is closed for comments.