projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a8c34cb) | patch
exim: update to version 4.96.1
authorDaniel Golle <daniel@makrotopia.org>
Fri, 6 Oct 2023 21:38:23 +0000 (23:38 +0200)
committerJosef Schlehofer <pepe.schlehofer@gmail.com>
Sun, 8 Oct 2023 06:32:02 +0000 (08:32 +0200)
commit79804fa23c015ffb074586b0643256ac5cac393c
tree3803e857463ea41928147b538f5d483d429ef560tree | snapshot
parenta8c34cbed02962253018c24b4e0cd52f4088c482commit | diff
exim: update to version 4.96.1

This is a security release.

JH/01 Bug 2999: Fix a possible OOB write in the external authenticator, which
      could be triggered by externally-supplied input.  Found by Trend Micro.
      CVE-2023-42115

JH/02 Bug 3000: Fix a possible OOB write in the SPA authenticator, which could
      be triggered by externally-controlled input.  Found by Trend Micro.
      CVE-2023-42116

JH/03 Bug 3001: Fix a possible OOB read in the SPA authenticator, which could
      be triggered by externally-controlled input.  Found by Trend Micro.
      CVE-2023-42114

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit 7c8f4a2a1c2e883ae3ebd62aab96bb45e31b4d55)
mail/exim/Makefile diff | blob | history
mail/exim/patches/000-preliminary-fixes-for-ZDI-vulns.patch [deleted file] blob | history
Mirror of packages feed