Re: [exim] Exim 4.80.1 security release - details

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MJeremy Harris at <-
MMike Ridgers at ->
Delete this message
Reply to this message
Author: Phil Pennock
Date:  
To: Jeremy Harris
CC: exim-users
Subject: Re: [exim] Exim 4.80.1 security release - details
On 2012-12-02 at 18:33 +0000, Jeremy Harris wrote:
> On 10/26/2012 09:35 AM, Phil Pennock wrote:
> > [...] a remote code
> > execution hole in Exim, affecting releases 4.70 to 4.80, in the DKIM
> > handling. This can be triggered by anyone who can send you email from a
> > domain for which they control the DNS, and gets them the Exim run-time
> > user.
>
> Should this be added to https://github.com/Exim/exim/wiki/EximSecurity ?

Er, yes. Done.

Also, updated https://github.com/Exim/exim/wiki/EximRelease so that this
doesn't get skipped in future.

Thanks,
-Phil

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Exim 4.80.1 security release - details[exim] Retry time not reached for any host after a long failure period->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)