DEBIAN-CVE-2026-40686

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2026-40686

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-40686.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2026-40686

Upstream

CVE-2026-40686

Published

2026-04-30T05:00:45.227924Z

Modified

2026-04-30T05:00:45.227924Z

Summary

[none]

Details

References

https://security-tracker.debian.org/tracker/CVE-2026-40686

Affected packages

Debian:11 / exim4

Package

Name: exim4
Purl: pkg:deb/debian/exim4?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.94.2-7

4.94.2-7+deb11u1

4.94.2-7+deb11u2

4.94.2-7+deb11u3

4.94.2-7+deb11u4

4.95~RC0-1

4.95~RC1-1

4.95~RC2-1

4.95-1

4.95-2

4.95-3

4.95-4

4.95-5

4.95-6~bpo11+1

4.95-6

4.96~RC0-1

4.96~RC1-1

4.96~RC1-2

4.96~RC2-1

4.96-1~bpo11+1

4.96-1

4.96-3~bpo11+1

4.96-3

4.96-4

4.96-5

4.96-6

4.96-7

4.96-8

4.96-9~bpo11+1

4.96-9

4.96-10

4.96-11~bpo11+1

4.96-11

4.96-12

4.96-13~bpo11+1

4.96-13

4.96-14~bpo11+1

4.96-14

4.96-15~bpo11+1

4.96-15

4.96-16

4.96-17

4.96-18

4.96-19

4.96-20

4.96-21

4.96-22

4.97~RC0-1

4.97~RC0-2

4.97~RC0-3

4.97~RC1-1

4.97~RC1-2

4.97~RC2-1

4.97~RC2-2

4.97~RC3-1

4.97-1~hurd.2

4.97-1

4.97-2

4.97-3

4.97-4

4.97-5

4.97-6

4.97-7

4.97-8~bpo12+1

4.97-8

4.98~RC0-1

4.98~RC1-1

4.98~RC2-1

4.98~RC3-1

4.98~RC3-2~bpo12+1

4.98~RC3-2

4.98-1~bpo12+1

4.98-1

4.98-2~bpo12+1

4.98-2

4.98-3~bpo12+1

4.98-3

4.98-3+hurd.1

4.98-4

4.98.1-1

4.98.1-2~bpo12+1

4.98.1-2

4.98.2-1~bpo12+1

4.98.2-1

4.98.2-1+hurd.1

4.98.2-2

4.99~RC1-1

4.99~RC2-1

4.99~RC3-1

4.99~RC3-2

4.99-1

4.99-2

4.99-3

4.99-4~bpo13+1

4.99-4

4.99-5

4.99-6~bpo13+1

4.99-6

4.99-7~bpo13+1

4.99-7

4.99.1-1~bpo13+1

4.99.1-1

4.99.1-2

4.99.1-3

4.99.1-4

4.99.1-5

4.99.1-6

4.99.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-40686.json"

Debian:12 / exim4

Package

Name: exim4
Purl: pkg:deb/debian/exim4?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.96-15

4.96-15+deb12u1

4.96-15+deb12u2

4.96-15+deb12u3

4.96-15+deb12u4

4.96-15+deb12u5

4.96-15+deb12u6

4.96-15+deb12u7

4.96-16

4.96-17

4.96-18

4.96-19

4.96-20

4.96-21

4.96-22

4.97~RC0-1

4.97~RC0-2

4.97~RC0-3

4.97~RC1-1

4.97~RC1-2

4.97~RC2-1

4.97~RC2-2

4.97~RC3-1

4.97-1~hurd.2

4.97-1

4.97-2

4.97-3

4.97-4

4.97-5

4.97-6

4.97-7

4.97-8~bpo12+1

4.97-8

4.98~RC0-1

4.98~RC1-1

4.98~RC2-1

4.98~RC3-1

4.98~RC3-2~bpo12+1

4.98~RC3-2

4.98-1~bpo12+1

4.98-1

4.98-2~bpo12+1

4.98-2

4.98-3~bpo12+1

4.98-3

4.98-3+hurd.1

4.98-4

4.98.1-1

4.98.1-2~bpo12+1

4.98.1-2

4.98.2-1~bpo12+1

4.98.2-1

4.98.2-1+hurd.1

4.98.2-2

4.99~RC1-1

4.99~RC2-1

4.99~RC3-1

4.99~RC3-2

4.99-1

4.99-2

4.99-3

4.99-4~bpo13+1

4.99-4

4.99-5

4.99-6~bpo13+1

4.99-6

4.99-7~bpo13+1

4.99-7

4.99.1-1~bpo13+1

4.99.1-1

4.99.1-2

4.99.1-3

4.99.1-4

4.99.1-5

4.99.1-6

4.99.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-40686.json"

Debian:13 / exim4

Package

Name: exim4
Purl: pkg:deb/debian/exim4?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.98.2-1

4.98.2-1+hurd.1

4.98.2-2

4.99~RC1-1

4.99~RC2-1

4.99~RC3-1

4.99~RC3-2

4.99-1

4.99-2

4.99-3

4.99-4~bpo13+1

4.99-4

4.99-5

4.99-6~bpo13+1

4.99-6

4.99-7~bpo13+1

4.99-7

4.99.1-1~bpo13+1

4.99.1-1

4.99.1-2

4.99.1-3

4.99.1-4

4.99.1-5

4.99.1-6

4.99.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-40686.json"

Debian:14 / exim4

Package

Name: exim4
Purl: pkg:deb/debian/exim4?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.98.2-1

4.98.2-1+hurd.1

4.98.2-2

4.99~RC1-1

4.99~RC2-1

4.99~RC3-1

4.99~RC3-2

4.99-1

4.99-2

4.99-3

4.99-4~bpo13+1

4.99-4

4.99-5

4.99-6~bpo13+1

4.99-6

4.99-7~bpo13+1

4.99-7

4.99.1-1~bpo13+1

4.99.1-1

4.99.1-2

4.99.1-3

4.99.1-4

4.99.1-5

4.99.1-6

4.99.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-40686.json"