New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution

SITREP: Exim has issued security updates to mitigate a critical vulnerability identified as CVE-2026-45185, also known as Dead.Letter, which affects specific configurations of GnuTLS builds. This vulnerability poses risks of memory corruption and potential code execution. TACTICAL ASSESSMENT: The emergence of this vulnerability highlights significant security concerns for systems utilizing Exim as their Mail Transfer Agent, particularly in Unix-like environments. The potential for code execution could lead to unauthorized access and exploitation of sensitive data. PROJECTED VECTORS: Future attacks may exploit this vulnerability if systems are not promptly updated, leading to increased incidents of data breaches.