Change log for exim4 package in Ubuntu
| 1 → 75 of 214 results | First • Previous • Next • Last |
exim4 (4.97-4ubuntu4) noble; urgency=medium * No-change rebuild for CVE-2024-3094 -- Steve Langasek <email address hidden> Sun, 31 Mar 2024 18:12:56 +0000
Available diffs
- diff from 4.97-4ubuntu3 to 4.97-4ubuntu4 (302 bytes)
exim4 (4.97-4ubuntu3) noble; urgency=medium * No-change rebuild against libperl5.38t64 -- Steve Langasek <email address hidden> Sat, 09 Mar 2024 18:19:06 +0000
Available diffs
- diff from 4.97-4ubuntu1 to 4.97-4ubuntu3 (359 bytes)
- diff from 4.97-4ubuntu2 to 4.97-4ubuntu3 (297 bytes)
| Superseded in noble-proposed |
exim4 (4.97-4ubuntu2) noble; urgency=medium * No-change rebuild against libdb5.3t64 -- Steve Langasek <email address hidden> Sat, 02 Mar 2024 20:31:24 +0000
Available diffs
- diff from 4.97-4ubuntu1 to 4.97-4ubuntu2 (332 bytes)
| Deleted in noble-updates (Reason: superseded by release) |
| Superseded in noble-release |
| Deleted in noble-proposed (Reason: Moved to noble) |
exim4 (4.97-4ubuntu1) noble; urgency=medium * Merge with Debian unstable (LP: #2051408). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + d/control: Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. (LP #1952738) + d/control: drop Build-Depends on libspf2-dev. + d/EDITME.exim4-heavy.diff: disable support for libspf2. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl, but without the previously supported helo detection. -- Bryce Harrington <email address hidden> Fri, 26 Jan 2024 17:11:37 -0800
Available diffs
- diff from 4.97-3ubuntu1 to 4.97-4ubuntu1 (1.1 KiB)
- diff from 4.97-3ubuntu2 to 4.97-4ubuntu1 (1.0 KiB)
exim4 (4.96-17ubuntu2.2) mantic-security; urgency=medium
* SECURITY UPDATE: SMTP smuggling
- debian/patches/CVE-2023-51766-1.patch: Reject "dot, LF" as
ending data phase in src/receive.c, src/smtp_in.c.
- debian/patches/CVE-2023-51766-2.patch: use enum for body data
input state-machine in src/receive.c.
- debian/patches/CVE-2023-51766-3.patch: fix in src/receive.c.
- CVE-2023-51766
-- Leonidas Da Silva Barbosa <email address hidden> Thu, 11 Jan 2024 12:40:18 -0300
Available diffs
exim4 (4.93-13ubuntu1.10) focal-security; urgency=medium
* SECURITY UPDATE: SMTP smuggling
- debian/patches/CVE-2023-51766-1.patch: Reject "dot, LF" as
ending data phase in src/receive.c, src/smtp_in.c.
- debian/patches/CVE-2023-51766-2.patch: use enum for body data
input state-machine in src/receive.c.
- debian/patches/CVE-2023-51766-3.patch: fix in src/receive.c.
- CVE-2023-51766
-- Leonidas Da Silva Barbosa <email address hidden> Thu, 11 Jan 2024 10:28:33 -0300
Available diffs
exim4 (4.95-4ubuntu2.5) jammy-security; urgency=medium
* SECURITY UPDATE: SMTP smuggling
- debian/patches/CVE-2023-51766-1.patch: Reject "dot, LF" as
ending data phase in src/receive.c, src/smtp_in.c.
- debian/patches/CVE-2023-51766-2.patch: use enum for body data
input state-machine in src/receive.c.
- debian/patches/CVE-2023-51766-3.patch: fix in src/receive.c.
- CVE-2023-51766
-- Leonidas Da Silva Barbosa <email address hidden> Thu, 11 Jan 2024 10:16:58 -0300
Available diffs
| Superseded in noble-proposed |
exim4 (4.97-3ubuntu2) noble; urgency=medium * No-change rebuild for the perl update. -- Matthias Klose <email address hidden> Thu, 11 Jan 2024 04:29:22 +0100
Available diffs
- diff from 4.97-3ubuntu1 to 4.97-3ubuntu2 (332 bytes)
exim4 (4.97-3ubuntu1) noble; urgency=medium * Merge with Debian unstable (LP: #2040379). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + d/control: Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. (LP #1952738) + d/control: drop Build-Depends on libspf2-dev. + d/EDITME.exim4-heavy.diff: disable support for libspf2. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl, but without the previously supported helo detection. * Dropped: - information disclosure + d/p/CVE-2023-42114.patch: fix possible OOB read in SPA authenticator [Included in 4.97~RC1-2] - remote code execution + d/p/CVE-2023-42115.patch: fix possible OOB write in external authenticator [Included in 4.97~RC1-2] - remote code execution + d/p/CVE-2023-42116.patch: fix possible OOB write in SPA authenticator [Included in 4.97~RC1-2] - d/p/CVE-2023-42114_15_16.patch: + use uschar more in spa authenticator [Included in 4.97~RC1-2] - remote code execution + d/p/CVE-2023-42117.patch: fixed string_is_ip_address() in string.c - information disclosure + d/p/CVE-2023-42119.patch: hardened dnsdb.c against crafted DNS responses. [Included in upstream release 4.97] -- Bryce Harrington <email address hidden> Wed, 03 Jan 2024 12:58:30 -0800
Available diffs
| Superseded in noble-release |
| Deleted in noble-proposed (Reason: Moved to noble) |
| Superseded in mantic-updates |
| Superseded in mantic-security |
exim4 (4.96-17ubuntu2.1) mantic-security; urgency=medium
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42117.patch: fixed string_is_ip_address()
in string.c
- CVE-2023-42117
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42119.patch: hardened dnsdb.c against
crafted DNS responses.
- CVE-2023-42119
-- Allen Huang <email address hidden> Wed, 25 Oct 2023 01:21:02 +0100
Available diffs
exim4 (4.93-13ubuntu1.9) focal-security; urgency=medium
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42117.patch: fixed string_is_ip_address()
in string.c
- CVE-2023-42117
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42119.patch: hardened dnsdb.c against
crafted DNS responses.
- CVE-2023-42119
-- Allen Huang <email address hidden> Wed, 25 Oct 2023 01:39:47 +0100
Available diffs
exim4 (4.95-4ubuntu2.4) jammy-security; urgency=medium
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42117.patch: fixed string_is_ip_address()
in string.c
- CVE-2023-42117
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42119.patch: hardened dnsdb.c against
crafted DNS responses.
- CVE-2023-42119
-- Allen Huang <email address hidden> Wed, 25 Oct 2023 01:36:57 +0100
Available diffs
exim4 (4.96-14ubuntu1.3) lunar-security; urgency=medium
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42117.patch: fixed string_is_ip_address()
in string.c
- CVE-2023-42117
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42119.patch: hardened dnsdb.c against
crafted DNS responses.
- CVE-2023-42119
-- Allen Huang <email address hidden> Wed, 25 Oct 2023 01:34:55 +0100
Available diffs
| Superseded in noble-release |
| Published in mantic-release |
| Deleted in mantic-proposed (Reason: Moved to mantic) |
exim4 (4.96-17ubuntu2) mantic; urgency=medium
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42114.patch: fix possible OOB read in
SPA authenticator
- CVE-2023-42114
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42115.patch: fix possible OOB write in
external authenticator
- CVE-2023-42115
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42116.patch: fix possible OOB write in
SPA authenticator
- CVE-2023-42116
* debian/patches/CVE-2023-42114_15_16.patch:
- use uschar more in spa authenticator
-- Allen Huang <email address hidden> Tue, 03 Oct 2023 14:35:45 +0100
Available diffs
exim4 (4.96-14ubuntu1.2) lunar-security; urgency=medium
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42114.patch: fix possible OOB read in
SPA authenticator
- CVE-2023-42114
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42115.patch: fix possible OOB write in
external authenticator
- CVE-2023-42115
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42116.patch: fix possible OOB write in
SPA authenticator
- CVE-2023-42116
* debian/patches/CVE-2023-42114_15_16.patch:
- use uschar more in spa authenticator
-- Allen Huang <email address hidden> Mon, 02 Oct 2023 16:53:24 +0100
Available diffs
exim4 (4.93-13ubuntu1.8) focal-security; urgency=medium
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42114.patch: fix possible OOB read in
SPA authenticator
- CVE-2023-42114
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42115.patch: fix possible OOB write in
external authenticator
- CVE-2023-42115
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42116.patch: fix possible OOB write in
SPA authenticator
- CVE-2023-42116
* debian/patches/CVE-2023-42114_15_16.patch:
- use uschar more in spa authenticator
-- Allen Huang <email address hidden> Mon, 02 Oct 2023 17:21:29 +0100
Available diffs
exim4 (4.95-4ubuntu2.3) jammy-security; urgency=medium
* SECURITY UPDATE: information disclosure
- debian/patches/CVE-2023-42114.patch: fix possible OOB read in
SPA authenticator
- CVE-2023-42114
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42115.patch: fix possible OOB write in
external authenticator
- CVE-2023-42115
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2023-42116.patch: fix possible OOB write in
SPA authenticator
- CVE-2023-42116
* debian/patches/CVE-2023-42114_15_16.patch:
- use uschar more in spa authenticator
-- Allen Huang <email address hidden> Mon, 02 Oct 2023 17:10:42 +0100
Available diffs
exim4 (4.96-17ubuntu1) mantic; urgency=medium * Merge with Debian unstable (LP: #2030098). Remaining changes: - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. (LP #1952738) + d/control: drop Build-Depends on libspf2-dev. + d/EDITME.exim4-heavy.diff: disable support for libspf2. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl, but without the previously supported helo detection. - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. * Dropped: - d/p/fix-run--arg-parsing.patch: Fix argument parsing for ${run } expansion. Previously, when an argument included a close-brace character (e.g. it itself used an expansion) an error occurred. (LP #1998678) [Accepted by Debian in 4.96-16] -- Bryce Harrington <email address hidden> Fri, 04 Aug 2023 20:28:47 -0700
Available diffs
exim4 (4.96-14ubuntu1.1) lunar; urgency=medium
* d/p/fix-run--arg-parsing.patch: Fix argument parsing for ${run }
expansion. Previously, when an argument included a close-brace
character (e.g. it itself used an expansion) an error occurred.
(LP: #1998678)
-- Bryce Harrington <email address hidden> Fri, 10 Feb 2023 00:17:40 -0800
Available diffs
exim4 (4.96-3ubuntu1.2) kinetic; urgency=medium
* d/p/fix-run--arg-parsing.patch: Fix argument parsing for ${run }
expansion. Previously, when an argument included a close-brace
character (e.g. it itself used an expansion) an error occurred.
(LP: #1998678)
-- Bryce Harrington <email address hidden> Tue, 11 Apr 2023 18:16:12 -0700
Available diffs
exim4 (4.96-15ubuntu2) mantic; urgency=medium
* d/p/fix-run--arg-parsing.patch: Fix argument parsing for ${run }
expansion. Previously, when an argument included a close-brace
character (e.g. it itself used an expansion) an error occurred.
(LP: #1998678)
* d/d/c/a/30_exim4-config_check_rcpt: In SPF config snippet,
drop support for helo scope.
-- Bryce Harrington <email address hidden> Wed, 07 Jun 2023 22:28:04 -0700
Available diffs
exim4 (4.96-15ubuntu1) mantic; urgency=medium * Merge with Debian unstable (LP: #2018070). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. + d/control: drop Build-Depends on libspf2-dev. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl. + d/EDITME.exim4-heavy.diff: disable support for libspf2. -- Mitchell Dzurick <email address hidden> Fri, 19 May 2023 13:32:18 -0700
Available diffs
| Superseded in mantic-release |
| Published in lunar-release |
| Deleted in lunar-proposed (Reason: Moved to lunar) |
exim4 (4.96-14ubuntu1) lunar; urgency=medium * Merge with Debian unstable (LP: #2008016). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. + d/control: drop Build-Depends on libspf2-dev. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl. + d/EDITME.exim4-heavy.diff: disable support for libspf2. -- Bryce Harrington <email address hidden> Tue, 21 Feb 2023 19:52:34 +0000
Available diffs
- diff from 4.96-9ubuntu1 to 4.96-14ubuntu1 (16.5 KiB)
exim4 (4.96-9ubuntu1) lunar; urgency=medium * Merge with Debian unstable. (LP: #1993399) Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. (LP #1952738) This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. Changes: + d/control: drop Build-Depends on libspf2-dev. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl. + d/EDITME.exim4-heavy.diff: disable support for libspf2.
Available diffs
- diff from 4.96-3ubuntu1 to 4.96-9ubuntu1 (12.6 KiB)
- diff from 4.96-3ubuntu2 to 4.96-9ubuntu1 (12.6 KiB)
exim4 (4.90.1-1ubuntu1.10) bionic-security; urgency=medium
* SECURITY UPDATE: use after free in regex handler
- debian/patches/CVE-2022-3559-1.patch: properly clear references in
src/exim.c, src/expand.c, src/functions.h, src/globals.c,
src/regex.c, src/smtp_in.c.
- debian/patches/CVE-2022-3559-2.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/regex.c.
- debian/patches/CVE-2022-3559-3.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/functions.h, src/globals.h, src/regex.c,
src/smtp_in.c.
- debian/patches/CVE-2022-3559-4.patch: fix non-WITH_CONTENT_SCAN build
in src/expand.c.
- CVE-2022-3559
-- Marc Deslauriers <email address hidden> Wed, 23 Nov 2022 10:55:59 -0500
Available diffs
exim4 (4.95-4ubuntu2.2) jammy-security; urgency=medium
* SECURITY UPDATE: use after free in regex handler
- debian/patches/CVE-2022-3559-1.patch: properly clear references in
src/exim.c, src/expand.c, src/functions.h, src/globals.c,
src/regex.c, src/smtp_in.c.
- debian/patches/CVE-2022-3559-2.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/regex.c.
- debian/patches/CVE-2022-3559-3.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/functions.h, src/globals.h, src/regex.c,
src/smtp_in.c.
- debian/patches/CVE-2022-3559-4.patch: fix non-WITH_CONTENT_SCAN build
in src/expand.c.
- CVE-2022-3559
-- Marc Deslauriers <email address hidden> Wed, 23 Nov 2022 10:53:26 -0500
Available diffs
exim4 (4.93-13ubuntu1.7) focal-security; urgency=medium
* SECURITY UPDATE: use after free in regex handler
- debian/patches/CVE-2022-3559-1.patch: properly clear references in
src/exim.c, src/expand.c, src/functions.h, src/globals.c,
src/regex.c, src/smtp_in.c.
- debian/patches/CVE-2022-3559-2.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/regex.c.
- debian/patches/CVE-2022-3559-3.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/functions.h, src/globals.h, src/regex.c,
src/smtp_in.c.
- debian/patches/CVE-2022-3559-4.patch: fix non-WITH_CONTENT_SCAN build
in src/expand.c.
- CVE-2022-3559
-- Marc Deslauriers <email address hidden> Wed, 23 Nov 2022 10:54:36 -0500
Available diffs
exim4 (4.96-3ubuntu1.1) kinetic-security; urgency=medium
* SECURITY UPDATE: use after free in regex handler
- debian/patches/CVE-2022-3559-1.patch: properly clear references in
src/exim.c, src/expand.c, src/functions.h, src/globals.c,
src/regex.c, src/smtp_in.c.
- debian/patches/CVE-2022-3559-2.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/regex.c.
- debian/patches/CVE-2022-3559-3.patch: fix non-WITH_CONTENT_SCAN build
in src/exim.c, src/functions.h, src/globals.h, src/regex.c,
src/smtp_in.c.
- debian/patches/CVE-2022-3559-4.patch: fix non-WITH_CONTENT_SCAN build
in src/expand.c.
- CVE-2022-3559
-- Marc Deslauriers <email address hidden> Wed, 23 Nov 2022 10:48:18 -0500
Available diffs
| Superseded in lunar-proposed |
exim4 (4.96-3ubuntu2) lunar; urgency=medium * Rebuild against new perlapi-5.36. -- Gianfranco Costamagna <email address hidden> Sat, 05 Nov 2022 09:11:59 +0100
Available diffs
- diff from 4.96-3ubuntu1 to 4.96-3ubuntu2 (349 bytes)
exim4 (4.90.1-1ubuntu1.9) bionic-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer overflow
- debian/patches/CVE-2022-37452.patch: Fix host_name_lookup
in src/host.c.
- CVE-2022-37452
-- Leonidas Da Silva Barbosa <email address hidden> Wed, 17 Aug 2022 08:12:18 -0300
Available diffs
exim4 (4.93-13ubuntu1.6) focal-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer overflow
- debian/patches/CVE-2022-37452.patch: Fix host_name_lookup
in src/host.c.
- CVE-2022-37452
-- Leonidas Da Silva Barbosa <email address hidden> Wed, 17 Aug 2022 08:04:06 -0300
Available diffs
| Superseded in lunar-release |
| Obsolete in kinetic-release |
| Deleted in kinetic-proposed (Reason: Moved to kinetic) |
exim4 (4.96-3ubuntu1) kinetic; urgency=medium * Merge with Debian unstable. (LP: #1971274) Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. - Disable external SPF support to avoid Build-Depends on libspf2-dev (only available in universe). SPF can still be implemented via spf-tools-perl, as documented in exim4.conf.template. (LP #1952738) This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1. Changes: + d/control: drop Build-Depends on libspf2-dev. + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based on spfquery.mail-spf-perl from spf-tools-perl. + d/EDITME.exim4-heavy.diff: disable support for libspf2.
Available diffs
- diff from 4.95-4ubuntu3 to 4.96-3ubuntu1 (317.8 KiB)
exim4 (4.95-4ubuntu2.1) jammy; urgency=medium
* d/p/lp1974214-segfault-smtp-delivery-0{1,2}.patch: Fix segfault when
there's an SMTP delivery attempt following a deferral. (LP: #1974214)
-- Sergio Durigan Junior <email address hidden> Fri, 03 Jun 2022 17:51:15 -0400
Available diffs
exim4 (4.95-4ubuntu3) kinetic; urgency=medium
* d/p/lp1974214-segfault-smtp-delivery-0{1,2}.patch: Fix segfault when
there's an SMTP delivery attempt following a deferral. (LP: #1974214)
-- Sergio Durigan Junior <email address hidden> Fri, 03 Jun 2022 17:37:10 -0400
Available diffs
- diff from 4.95-4ubuntu2 to 4.95-4ubuntu3 (3.2 KiB)
| Superseded in kinetic-release |
| Published in jammy-release |
| Deleted in jammy-proposed (Reason: Moved to jammy) |
exim4 (4.95-4ubuntu2) jammy; urgency=medium
* d/p/lp1966923-exiqgrep-syntax-error.patch: Fix exiqgrep syntax error,
improve the validation of command-line options and add a new -E option
to allow specifying a binary to be used. (LP: #1966923)
-- Sergio Durigan Junior <email address hidden> Wed, 30 Mar 2022 16:45:24 -0400
Available diffs
- diff from 4.95-4ubuntu1 to 4.95-4ubuntu2 (1.3 KiB)
exim4 (4.95-4ubuntu1) jammy; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution
in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
- Disable external SPF support to avoid Build-Depends on libspf2-dev
(only available in universe). SPF can still be implemented via
spf-tools-perl, as documented in exim4.conf.template. (LP #1952738)
This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1.
Changes:
+ d/control: drop Build-Depends on libspf2-dev.
+ d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based
on spfquery.mail-spf-perl from spf-tools-perl.
+ d/EDITME.exim4-heavy.diff: disable support for libspf2.
-- Utkarsh Gupta <email address hidden> Fri, 25 Feb 2022 01:47:15 +0530
Available diffs
- diff from 4.95-2ubuntu2 to 4.95-4ubuntu1 (8.9 KiB)
- diff from 4.95-2ubuntu3 to 4.95-4ubuntu1 (8.9 KiB)
| Superseded in jammy-proposed |
exim4 (4.95-2ubuntu3) jammy; urgency=medium * No-change rebuild for the perl update. -- Matthias Klose <email address hidden> Sun, 06 Feb 2022 14:52:48 +0100
Available diffs
- diff from 4.95-2ubuntu2 to 4.95-2ubuntu3 (297 bytes)
exim4 (4.95-2ubuntu2) jammy; urgency=medium
* New delta:
- Disable external SPF support to avoid Build-Depends on libspf2-dev
(only available in universe). SPF can still be implemented via
spf-tools-perl, as documented in exim4.conf.template. (LP: #1952738)
This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1.
Changes:
+ d/control: drop Build-Depends on libspf2-dev.
+ d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based
on spfquery.mail-spf-perl from spf-tools-perl.
+ d/EDITME.exim4-heavy.diff: disable support for libspf2.
-- Paride Legovini <email address hidden> Wed, 01 Dec 2021 11:48:10 +0100
Available diffs
- diff from 4.94.2-7ubuntu2 to 4.95-2ubuntu2 (308.8 KiB)
- diff from 4.95-2ubuntu1 to 4.95-2ubuntu2 (1.8 KiB)
| Superseded in jammy-proposed |
exim4 (4.95-2ubuntu1) jammy; urgency=medium * Merge with Debian unstable (LP: #1946857). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. -- Lena Voytek <email address hidden> Tue, 09 Nov 2021 10:10:14 -0700
Available diffs
- diff from 4.94.2-7ubuntu3 to 4.95-2ubuntu1 (309.3 KiB)
| Superseded in jammy-proposed |
exim4 (4.94.2-7ubuntu3) jammy; urgency=medium * No-change rebuild against libidn12 -- Steve Langasek <email address hidden> Sun, 07 Nov 2021 05:31:31 +0000
Available diffs
- diff from 4.94.2-7ubuntu2 to 4.94.2-7ubuntu3 (327 bytes)
| Superseded in jammy-release |
| Obsolete in impish-release |
| Deleted in impish-proposed (Reason: Moved to impish) |
exim4 (4.94.2-7ubuntu2) impish; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
-- Miriam Espana Acebal <email address hidden> Thu, 15 Jul 2021 13:23:50 +0200
Available diffs
- diff from 4.94.2-2ubuntu2 to 4.94.2-7ubuntu2 (11.7 KiB)
- diff from 4.94.2-7ubuntu1 to 4.94.2-7ubuntu2 (344 bytes)
| Superseded in impish-proposed |
exim4 (4.94.2-7ubuntu1) impish; urgency=medium
* Merge with Debian unstable (LP: #SD94). Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
-- Miriam Espana Acebal <email address hidden> Thu, 15 Jul 2021 13:23:50 +0200
Available diffs
- diff from 4.94.2-2ubuntu2 to 4.94.2-7ubuntu1 (11.7 KiB)
exim4 (4.94.2-2ubuntu2) impish; urgency=medium * No-change rebuild due to OpenLDAP soname bump. -- Sergio Durigan Junior <email address hidden> Mon, 21 Jun 2021 17:47:09 -0400
Available diffs
- diff from 4.94.2-2ubuntu1 to 4.94.2-2ubuntu2 (343 bytes)
exim4 (4.94.2-2ubuntu1) impish; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
* Dropped changes:
- debian/patches/sec-202105/*.patch: backport patches from upstream to
correct issues.
[Included in 4.94.2-1]
Available diffs
exim4 (4.90.1-1ubuntu1.8) bionic-security; urgency=medium
* SECURITY UPDATE: Multiple security issues
- debian/patches/sec-may2021-*.patch: backport patches from upstream to
correct issues.
- CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010,
CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014,
CVE-2020-28015, CVE-2020-28016, CVE-2020-28017, CVE-2020-28018,
CVE-2020-28019, CVE-2020-28020, CVE-2020-28021, CVE-2020-28022,
CVE-2020-28023, CVE-2020-28024, CVE-2020-28025, CVE-2020-28026,
CVE-2021-27216
-- Marc Deslauriers <email address hidden> Fri, 30 Apr 2021 10:15:04 -0400
Available diffs
exim4 (4.93-13ubuntu1.5) focal-security; urgency=medium
* SECURITY UPDATE: Multiple security issues
- debian/patches/sec-202105/*.patch: backport patches from upstream to
correct issues.
- CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010,
CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014,
CVE-2020-28015, CVE-2020-28016, CVE-2020-28017, CVE-2020-28018,
CVE-2020-28019, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023,
CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216
-- Marc Deslauriers <email address hidden> Wed, 28 Apr 2021 09:19:17 -0400
Available diffs
| Superseded in impish-release |
| Deleted in impish-proposed (Reason: Moved to impish) |
| Obsolete in hirsute-updates |
| Obsolete in hirsute-security |
exim4 (4.94-15ubuntu1.2) hirsute-security; urgency=medium
* SECURITY UPDATE: Multiple security issues
- debian/patches/sec-202105/*.patch: backport patches from upstream to
correct issues.
- CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010,
CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014,
CVE-2020-28015, CVE-2020-28016, CVE-2020-28017, CVE-2020-28018,
CVE-2020-28019, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023,
CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216
-- Marc Deslauriers <email address hidden> Fri, 30 Apr 2021 08:46:21 -0400
Available diffs
exim4 (4.94-7ubuntu1.2) groovy-security; urgency=medium
* SECURITY UPDATE: Multiple security issues
- debian/patches/sec-202105/*.patch: backport patches from upstream to
correct issues.
- CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010,
CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014,
CVE-2020-28015, CVE-2020-28016, CVE-2020-28017, CVE-2020-28018,
CVE-2020-28019, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023,
CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216
-- Marc Deslauriers <email address hidden> Fri, 30 Apr 2021 08:52:40 -0400
Available diffs
- diff from 4.94-7ubuntu1.1 to 4.94-7ubuntu1.2 (82.1 KiB)
| Superseded in impish-release |
| Obsolete in hirsute-release |
| Deleted in hirsute-proposed (Reason: moved to Release) |
exim4 (4.94-15ubuntu1) hirsute; urgency=medium * Merge with Debian unstable (LP: #1916744). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution.
Available diffs
exim4 (4.94-12ubuntu1) hirsute; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
-- Bryce Harrington <email address hidden> Wed, 20 Jan 2021 19:35:04 -0800
Available diffs
exim4 (4.94-9ubuntu1) hirsute; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
-- Bryce Harrington <email address hidden> Sat, 07 Nov 2020 01:01:32 +0000
Available diffs
- diff from 4.94-7ubuntu1 to 4.94-9ubuntu1 (20.1 KiB)
| Superseded in hirsute-release |
| Obsolete in groovy-release |
| Deleted in groovy-proposed (Reason: moved to Release) |
exim4 (4.94-7ubuntu1) groovy; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
-- Sergio Durigan Junior <email address hidden> Mon, 24 Aug 2020 16:36:31 -0400
Available diffs
- diff from 4.94-6ubuntu1 to 4.94-7ubuntu1 (3.4 KiB)
exim4 (4.94-6ubuntu1) groovy; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
+ Build-Depends on lsb-release to detect Distribution.
Available diffs
- diff from 4.94-2ubuntu1 to 4.94-6ubuntu1 (31.1 KiB)
exim4 (4.94-2ubuntu1) groovy; urgency=medium * Merge with Debian unstable (LP: #1881723). Remaining changes: - Show Ubuntu distribution in SMTP banner + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner. + Build-Depends on lsb-release to detect Distribution. -- Bryce Harrington <email address hidden> Fri, 12 Jun 2020 01:55:28 +0000
Available diffs
- diff from 4.93-15ubuntu1 to 4.94-2ubuntu1 (329.5 KiB)
exim4 (4.93-13ubuntu1.1) focal-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2020-12783-*.patch: fix SPA
authenticator, checking client-supplied data before using it
in src/auths/spa.c, src/auths/spa-spa.c.
- CVE-2020-12783
-- <email address hidden> (Leonidas S. Barbosa) Thu, 14 May 2020 10:29:45 -0300
Available diffs
exim4 (4.92.1-1ubuntu3.1) eoan-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2020-12783-*.patch: fix SPA
authenticator, checking client-supplied data before using it
in src/auths/spa.c, src/auths/spa-spa.c.
- CVE-2020-12783
-- <email address hidden> (Leonidas S. Barbosa) Thu, 14 May 2020 10:18:41 -0300
Available diffs
exim4 (4.90.1-1ubuntu1.5) bionic-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2020-12783-*.patch: fix SPA
authenticator, checking client-supplied data before using it
in src/auths/spa.c, src/auths/spa-spa.c.
- CVE-2020-12783
-- <email address hidden> (Leonidas S. Barbosa) Thu, 14 May 2020 10:10:01 -0300
Available diffs
exim4 (4.86.2-2ubuntu2.6) xenial-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2020-12783-*.patch: fix SPA
authenticator, checking client-supplied data before using it
in src/auths/spa.c, src/auths/spa-spa.c.
- CVE-2020-12783
-- <email address hidden> (Leonidas S. Barbosa) Thu, 14 May 2020 09:54:21 -0300
Available diffs
exim4 (4.93-15ubuntu1) groovy; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
Available diffs
| Superseded in groovy-release |
| Published in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
exim4 (4.93-13ubuntu1) focal; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
Available diffs
exim4 (4.93-12ubuntu1) focal; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
Available diffs
- diff from 4.93-11ubuntu1 to 4.93-12ubuntu1 (3.3 KiB)
- diff from 4.93-12ubuntu1~focal1 to 4.93-12ubuntu1 (321 bytes)
| Superseded in focal-proposed |
exim4 (4.93-12ubuntu1~focal1) focal; urgency=medium * ppa build for focal
Available diffs
exim4 (4.93-11ubuntu1) focal; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
Available diffs
- diff from 4.93-9ubuntu1 to 4.93-11ubuntu1 (80.5 KiB)
exim4 (4.93-9ubuntu1) focal; urgency=medium * Merge with Debian unstable (LP: #1860051). Remaining changes: - Show Ubuntu distribution in SMTP banner - Build-Depends on lsb-release to detect Distribution. - d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
Available diffs
- diff from 4.93~RC2-1ubuntu1 to 4.93-9ubuntu1 (132.1 KiB)
exim4 (4.93~RC2-1ubuntu1) focal; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
* Dropped:
- SECURITY UPDATE: remote command execution
+ d/p/CVE-2019-15846.patch: ensure not to interpret '\\'
before '\0' in src/string.c
+ CVE-2019-15846
[Now in upstream as of 4.92.2-1]
- SECURITY UPDATE: heap-based buffer overflow in string_vformat
+ debian/patches/CVE-2019-16928.patch: fix overflow in src/string.c.
+ CVE-2019-16928
[Now upstream as of 4.92.3-1]
Available diffs
- diff from 4.92.1-1ubuntu4 to 4.93~RC2-1ubuntu1 (492.3 KiB)
exim4 (4.92.1-1ubuntu4) focal; urgency=medium * No-change rebuild for the perl update. -- Matthias Klose <email address hidden> Fri, 18 Oct 2019 19:27:29 +0000
Available diffs
- diff from 4.92.1-1ubuntu3 to 4.92.1-1ubuntu4 (349 bytes)
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to Release) |
exim4 (4.92.1-1ubuntu3) eoan; urgency=medium
* SECURITY UPDATE: heap-based buffer overflow in string_vformat
- debian/patches/CVE-2019-16928.patch: fix overflow in src/string.c.
- CVE-2019-16928
-- Marc Deslauriers <email address hidden> Sat, 28 Sep 2019 11:05:50 -0400
Available diffs
- diff from 4.92.1-1ubuntu2 to 4.92.1-1ubuntu3 (1005 bytes)
exim4 (4.92-4ubuntu1.4) disco-security; urgency=medium
* SECURITY UPDATE: heap-based buffer overflow in string_vformat
- debian/patches/CVE-2019-16928.patch: fix overflow in src/string.c.
- CVE-2019-16928
-- Marc Deslauriers <email address hidden> Sat, 28 Sep 2019 11:07:31 -0400
Available diffs
exim4 (4.92.1-1ubuntu2) eoan; urgency=medium
* SECURITY UPDATE: remote command execution
- debian/patches/CVE-2019-15846.patch: ensure not to interpret '\\'
before '\0' in src/string.c
- CVE-2019-15846
-- Alex Murray <email address hidden> Thu, 05 Sep 2019 11:29:48 +0930
Available diffs
exim4 (4.92-4ubuntu1.3) disco-security; urgency=medium
* SECURITY UPDATE: remote command execution
- debian/patches/CVE-2019-15846.patch: ensure not to interpret '\\'
before '\0' in src/string.c
- CVE-2019-15846
-- Alex Murray <email address hidden> Thu, 05 Sep 2019 11:20:47 +0930
Available diffs
exim4 (4.90.1-1ubuntu1.4) bionic-security; urgency=medium
* SECURITY UPDATE: remote command execution
- debian/patches/CVE-2019-15846.patch: ensure not to interpret '\\'
before '\0' in src/string.c
- CVE-2019-15846
-- Alex Murray <email address hidden> Wed, 04 Sep 2019 21:14:01 +0930
Available diffs
exim4 (4.86.2-2ubuntu2.5) xenial-security; urgency=medium
* SECURITY UPDATE: remote command execution
- debian/patches/CVE-2019-15846.patch: ensure not to interpret '\\'
before '\0' in src/string.c
- CVE-2019-15846
-- Alex Murray <email address hidden> Thu, 05 Sep 2019 11:19:50 +0930
Available diffs
exim4 (4.92.1-1ubuntu1) eoan; urgency=medium
* Merge with Debian unstable. Remaining changes:
- Show Ubuntu distribution in SMTP banner
+ Build-Depends on lsb-release to detect Distribution.
+ d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
* Dropped:
- d/p/CVE-2019-13917.patch: avoid re-expansion in ${sort } in
src/expand.c.
[Fixed in 4.92.1]
Available diffs
- diff from 4.92-7ubuntu1 to 4.92.1-1ubuntu1 (39.4 KiB)
- diff from 4.92-7ubuntu2 to 4.92.1-1ubuntu1 (41.9 KiB)
| Superseded in eoan-proposed |
exim4 (4.92-7ubuntu2) eoan; urgency=medium
* SECURITY UPDATE: code execution via ${sort }
- debian/patches/CVE-2019-13917.patch: avoid re-expansion in ${sort }
in src/expand.c.
- CVE-2019-13917
-- Marc Deslauriers <email address hidden> Thu, 25 Jul 2019 12:58:39 -0400
Available diffs
- diff from 4.92-7ubuntu1 to 4.92-7ubuntu2 (5.7 KiB)
exim4 (4.86.2-2ubuntu2.4) xenial-security; urgency=medium
* SECURITY UPDATE: code execution via ${sort }
- debian/patches/CVE-2019-13917.patch: avoid re-expansion in ${sort }
in src/expand.c.
- CVE-2019-13917
-- Marc Deslauriers <email address hidden> Fri, 19 Jul 2019 07:21:10 -0400
| 1 → 75 of 214 results | First • Previous • Next • Last |
