[exim-dev] [Bug 2743] New: Tainted spool filename during imm…

Top Page
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 2743] New: Tainted spool filename during immediate delivery from named queue
https://bugs.exim.org/show_bug.cgi?id=2743

            Bug ID: 2743
           Summary: Tainted spool filename during immediate delivery from
                    named queue
           Product: Exim
           Version: 4.94
          Hardware: x86-64
                OS: Linux
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Queues
          Assignee: unallocated@???
          Reporter: exim@???
                CC: exim-dev@???


exim 4.94.2 has a tainted filename error for a spool file during immediate
delivery from a named queue.

Immediate delivery fails with a tainted filename and spool error:
$ sendmail -t -i -f from@??? < email

exim[2]: 1lgYBc-0002Q8-N2 <= from@??? U=example P=local Q=example from
<from@???> for to@???
exim[3]: 1lgYBc-0002Q8-N2 Tainted filename
'/var/spool/exim/example/input//1lgYBc-0002Q8-N2-D'
exim[3]: 1lgYBc-0002Q8-N2 Spool error for
/var/spool/exim/example/input//1lgYBc-0002Q8-N2-D: Permission denied

A queue runner delivers successfully:
# exim -qGexample

exim[4]: Start 'example' queue run: pid=4
exim[5]: 1lgYBc-0002Q8-N2 => to@??? F=<from@???> Q=example
C="250 ok" QT=10s DT=1s
exim[5]: 1lgYBc-0002Q8-N2 Completed QT=10s
exim[4]: End 'example' queue run: pid=4

# begin exim.conf

acl_not_smtp_start      = not_smtp_start


begin acl

not_smtp_start:
    accept  sender_domains  = example.com
        queue           = example
    accept


# end exim.conf

--
You are receiving this mail because:
You are on the CC list for the bug.