New Debian exim4 4.92-8+deb10u11 fixes: This update addresses the following issues: 4.92-8+deb10u11 (Tue, 26 Nov 2024 18:30:50 +0100) * Non-maintainer upload by the ELTS team. * Fix CVE-2021-38371, CVE-2022-3559, CVE-2023-42117, CVE-2023-42119: Multiple potential security vulnerabilities have been addressed in exim4, a mail transport agent. These issues may allow remote attackers to disclose sensitive information or execute arbitrary code but only if Exim4 is run behind or with untrusted proxy servers or DNS resolvers. If your proxy-protocol proxy or DNS resolver are trustworthy, you are not affected.
--- mirror/ftp/pool/main/e/exim4/exim4_4.92-8+deb10u10.dsc +++ apt/ucs_5.0-0-errata5.0-9/source/exim4_4.92-8+deb10u11.dsc @@ -1,3 +1,13 @@ +4.92-8+deb10u11 [Tue, 26 Nov 2024 18:30:50 +0100] Markus Koschany <apo@debian.org>: + + * Non-maintainer upload by the ELTS team. + * Fix CVE-2021-38371, CVE-2022-3559, CVE-2023-42117, CVE-2023-42119: + Multiple potential security vulnerabilities have been addressed in exim4, a + mail transport agent. These issues may allow remote attackers to disclose + sensitive information or execute arbitrary code but only if Exim4 is run + behind or with untrusted proxy servers or DNS resolvers. If your + proxy-protocol proxy or DNS resolver are trustworthy, you are not affected. + 4.92-8+deb10u10 [Mon, 29 Jul 2024 22:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: * Non-maintainer upload by the ELTS Team. <http://piuparts.knut.univention.de/5.0-9/#7065527502810124316>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-9] 16f40b21197 Bug #57781: exim4 4.92-8+deb10u11 doc/errata/staging/exim4.yaml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x1185>