Comment 3 for bug 708023

This bug was fixed in the package exim4 - 4.74-1ubuntu1

---------------
exim4 (4.74-1ubuntu1) natty; urgency=low

  * Merge from debian experimental. Remaining changes: (LP: #713855)
    - debian/patches/71_exiq_grep_error_on_messages_without_size.patch:
      + Improve handling of broken messages when "exim4 -bp" (mailq)
        reports lines without size info. (Closes: #528625)
    - debian/control: Don't declare a Provides: default-mta; in Ubuntu,
      we want postfix to be the default.
    - debian/{control,rules}: Add and enable hardened build for PIE.
      (Closes: #542726)
  * Update 71_exiq_grep_error_on_messages_without_size.patch to get way
    which upstream has fixed it. Probably it can be dropped with next
    upstream release.
  * This upload fixes CVE: (LP: #708023)
    - CVE-2011-0017

exim4 (4.74-1) experimental; urgency=low

  * 4.74 release, should build on hurd again.
  * Fix some lintian --pedantic issues: copyright-refers-to-symlink-license
    maintainer-script-without-set-e debian-control-has-unusual-field-spacing

exim4 (4.74~rc2-1) experimental; urgency=low

  * In spf example use spf-tools-perl's spfquery instead of the one from
    libmail-spf-query-perl. Do not try to use unimplemented best-guess
    support. Update Suggests accordingly. Closes: #608336
  * Add headers in ACL by using the add_header modifier instead of "message".
    (This modifier has been available since 4.61.) Closes: #609308
  * New upstream version.
    + includes the fix for CVE-2011-0017
    + If a non-debug daemon was invoked with a non-whitelisted macro, then
      logs from after attempting delivery would be silently lost, including
      for successful delivery. This log-loss bug was introduced in 4.73
      as part of the security lockdown. Closes: #610611
    + Update some patches.
 -- Artur Rona <email address hidden> Wed, 09 Feb 2011 21:31:35 +0100