"The vulnerability was patched in 2008", the Register, first with the news
linkMaintainers for the Debian and Red Hat distributions of Linux have already issued patches, and their counterparts for other distributions are sure to follow soon. The most reliable fix is to update to version 4.7. Exim maintainer David Woodhouse has compiled a list of other options and short-term fixes here .. The vulnerability was patched in 2008 ..