projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: da0a243) | patch
exim: update to version 4.96.1
authorDaniel Golle <daniel@makrotopia.org>
Fri, 6 Oct 2023 21:38:23 +0000 (23:38 +0200)
committerDaniel Golle <daniel@makrotopia.org>
Sun, 8 Oct 2023 02:31:37 +0000 (04:31 +0200)
commitf6ae836225bb11c6b8f105de1c2d1ffb6743e1ff
tree5fede23929b653f088ed8965e2eabb271ca32277tree | snapshot
parentda0a243e0f06bfd131b8d6d36cab4f5be288411ccommit | diff
exim: update to version 4.96.1

This is a security release.

JH/01 Bug 2999: Fix a possible OOB write in the external authenticator, which
      could be triggered by externally-supplied input.  Found by Trend Micro.
      CVE-2023-42115

JH/02 Bug 3000: Fix a possible OOB write in the SPA authenticator, which could
      be triggered by externally-controlled input.  Found by Trend Micro.
      CVE-2023-42116

JH/03 Bug 3001: Fix a possible OOB read in the SPA authenticator, which could
      be triggered by externally-controlled input.  Found by Trend Micro.
      CVE-2023-42114

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit 7c8f4a2a1c2e883ae3ebd62aab96bb45e31b4d55)
mail/exim/Makefile diff | blob | history
mail/exim/patches/000-preliminary-fixes-for-ZDI-vulns.patch [deleted file] blob | history
Mirror of packages feed