Re: [exim] Taint mismatch in exim 4.93.0.4

Top Page
This message is part of the following thread:
M+-\the complete thread tree sorted by date
MM\MWolfgang Breyha at <-
.MMM\Odhiambo Washington at ->
Delete this message
Reply to this message
Author: Sean Donelan
Date:  
To: exim-users
Subject: Re: [exim] Taint mismatch in exim 4.93.0.4

I think there is still more taint issues in 4.93. There is an issue with
unix socket responses too. FreeBSD operating system.

2020-02-24 10:01:32 1j6FEi-0009ku-RP Taint mismatch, Ustrncpy:
ip_unixsocket 518 

   deny    malware    = */defer_ok
           condition  = ${if def:malware_name {true}{false}}
           message    = Message content has virus signature ($malware_name).


and 

   deny   spam       = nobody:true/defer_ok
           condition  = ${if def:spam_report {true}{false}}
           add_header = :at_start:X-Spam-Status: $spam_report
           message    = Message content has high spam score



On Mon, 24 Feb 2020, Heiko Schlichting via Exim-users wrote:
> after upgrading to exim 4.93.0.4 it complains about
>
>    2020-02-24 11:08:47 1j6AfP-002SAT-9R Taint mismatch, string_vformat: spam 404

>
> in SMTP DATA ACL. The config looks like this:
>
>    deny     message     = This message was classified as SPAM
>             spam        = nobody/defer_ok

>
> The message is temporarily rejected. Any idea?

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Taint mismatch in exim 4.93.0.4Re: [exim] Taint mismatch in exim 4.93.0.4->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)