exim4 (4.90.1-1ubuntu1.5) bionic-security; urgency=medium * SECURITY UPDATE: Out-of-bounds read - debian/patches/CVE-2020-12783-*.patch: fix SPA authenticator, checking client-supplied data before using it in src/auths/spa.c, src/auths/spa-spa.c. - CVE-2020-12783 -- <email address hidden> (Leonidas S. Barbosa) Thu, 14 May 2020 10:10:01 -0300