Got an Email today from the LMD software (Linux Malware Detect) on my DirectAdmin server that Exim has a root vulnerability.

Disable Exim:
touch /etc/eximdisable
service exim stop
systemctl disable exim
chkconfig exim off

Upgrade Exim:
1. DirectAdmin:

cd /usr/local/directadmin/custombuild
./build update
./build set exim yes
./build set eximconf yes
./build update
./build exim
./build exim_conf

2. cPanel https://documentation.cpanel.net/display/CKB/CVE-2019-10149+Exim

/scripts/upcp
/scripts/check_cpanel_rpms --fix --long-list

Additional documentation

More detailed information can be found at the following websites:

https://nvd.nist.gov/vuln/detail/CVE-2019-10149

https://seclists.org/oss-sec/2019/q2/152