On Thu, 14 Aug 2003, Florian Laws wrote:
> Hello Philip,
>
> > A minor security problem has been found in Exim 3 and 4 (many
> > thanks to Nick Cleaton). The bug is not thought to be exploitable,
> > but one can never be absolutely certain.
>
> Could you please clarify under which circumstances the bug might
> be triggered?
I was giving people who feel really paranoid a chance to get the patch
on before saying anything more - and also giving the geeks a chance to
read the patch and try to figure it out as an exercise... the poster of
the first correct explanation wins a free copy of Exim 4.22. :-)
--
Philip Hazel University of Cambridge Computing Service,
ph10@??? Cambridge, England. Phone: +44 1223 334714.
