View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-1531 severity moderate: SUSE including 3 source package names (exim-4.86.2-2.2, eximon-4.86.2-2.2, eximstats-html-4.86.2-2.2), 3 product×package rows across 1 product lines (openSUSE Tumbleweed): Fixed 3.
Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument.