Re: [exim-dev] proactive exploit mitigation patches

Startseite
Diese Nachricht ist Teil des folgenden Threads:
MDer komplette Thread sortiert nach Datum
MRyan Castellucci am <-
 
Nachricht löschen
Nachricht beantworten
Autor: Jeremy Harris
Datum:  
To: exim-dev
Neue Treads: Re: [exim-dev] proactive exploit mitigation patches
Betreff: Re: [exim-dev] proactive exploit mitigation patches
On 25/07/2019 17:16, Ryan Castellucci via Exim-dev wrote:
> I welcome any feedback on these proposed changes.

Without denying the possible value of such restrictions,
a more general protection against this class of exploits
has been developed, and hit the git repo yesterday:

f3ebb786e Track tainted data and refuse to expand it

--
Cheers,
Jeremy

Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-dev
Mailing-List-Info | Nachrichten um die Zeit		<-[exim-dev] proactive exploit mitigation patches[exim-dev] [Bug 2408] Exim 4.92 generating spurious "Delay reason:" for delayed messages->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)