A buffer overflow flaw was discovered in Exim's internal
string_vformat() function. A remote attacker could use this flaw to
execute arbitrary code on the mail server running Exim. (CVE-2010-4344)
Note: successful exploitation would allow a remote attacker to execute
arbitrary code as root on a Scientific Linux 4 or 5 system that
is running the Exim mail server. An exploit for this issue is known to
exist.
After installing this update, the Exim daemon will be restarted
automatically.