Univention Bugzilla – Bug 56968
exim4: Multiple issues (5.0)
Last modified: 2024-01-14 09:51:10 CET
New Debian exim4 4.92-8+deb10u9 fixes: This update addresses the following issue: 4.92-8+deb10u9 (Thu, 04 Jan 2024 21:07:16 +0100) * Non-maintainer upload by the LTS team. * Fix CVE-2023-51766: It was discovered that Exim, a mail transport agent, can be induced to accept a second message embedded as part of the body of a first message in certain configurations where PIPELINING or CHUNKING on incoming connections is offered.
--- mirror/ftp/pool/main/e/exim4/exim4_4.92-8+deb10u8.dsc +++ apt/ucs_5.0-0-errata5.0-6/source/exim4_4.92-8+deb10u9.dsc @@ -1,3 +1,12 @@ +4.92-8+deb10u9 [Thu, 04 Jan 2024 21:07:16 +0100] Markus Koschany <apo@debian.org>: + + * Non-maintainer upload by the LTS team. + * Fix CVE-2023-51766: + It was discovered that Exim, a mail transport agent, can be induced to + accept a second message embedded as part of the body of a first message in + certain configurations where PIPELINING or CHUNKING on incoming connections + is offered. + 4.92-8+deb10u8 [Mon, 02 Oct 2023 08:59:59 +0200] Markus Koschany <apo@debian.org>: * Non-maintainer upload by the LTS team. <http://piuparts.knut.univention.de/5.0-6/#2215063897475080383>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-6] 46e2fe9fb4 Bug #56968: exim4 4.92-8+deb10u9 doc/errata/staging/exim4.yaml | 8 ++------ 1 file changed, 2 insertions(+), 6 deletions(-) [5.0-6] c8d8d3abaa Bug #56968: exim4 4.92-8+deb10u9 doc/errata/staging/exim4.yaml | 17 +++++++++++++++++ 1 file changed, 17 insertions(+)
https://forge.univention.org/bugzilla/show_bug.cgi?id=56968