Ubuntu
exim4 package

Merge exim4 from Debian unstable for lunar

Bug #1993399 reported by Bryce Harrington
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
exim4 (Ubuntu)
Fix Released
Undecided
Marc Deslauriers

Bug Description

Scheduled-For: ubuntu-23.01
Upstream: tbd
Debian: 4.96-6
Ubuntu: 4.96-3ubuntu1

### New Debian Changes ###

exim4 (4.96-6) unstable; urgency=low

  * Use a limit of 1G instead oof 2G in message_linelength_limit. (Thanks,
    Frederic Peters) Closes: #1021503

 -- Andreas Metzler <email address hidden> Mon, 10 Oct 2022 07:02:03 +0200

exim4 (4.96-5) unstable; urgency=low

  * Add pointers to /etc/mailname documentation to exim4-config_files.5.
    Closes: #1019946
  * Change remote_smtp transports to set message_linelength_limit = 2G if
    IGNORE_SMTP_LINE_LENGTH_LIMIT was set to avoid accepting messages (due to
    IGNORE_SMTP_LINE_LENGTH_LIMIT disabling the limit in the ACLs) without
    being able to pass them on. Closes: #1019959
  * Pull 75_16-GnuTLS-fix-for-clients-offering-no-TLS-extensions.patch from
    upstream GIT.

 -- Andreas Metzler <email address hidden> Sun, 09 Oct 2022 14:26:52 +0200

exim4 (4.96-4) unstable; urgency=low

  * Cherrypick two fixes from upstream GIT master:
    + 75_05-SPF-fix-memory-accounting-for-error-case.patch
    + 75_08-Fix-regex-n-use-after-free.-Bug-2915.patch
      75_09-Fix-non-WITH_CONTENT_SCAN-build.patch
      75_10-Fix-non-WITH_CONTENT_SCAN-build-2.patch
      75_11-Fix-non-WITH_CONTENT_SCAN-build-3.patch
   * 85_dmarc-api-breakage-workaround.diff: Fix build-error against
     opendmarc-1.4 which broke API and ABI without soname bump.
     Closes: #1014945

 -- Andreas Metzler <email address hidden> Sun, 11 Sep 2022 13:38:26 +0200

exim4 (4.96-3) unstable; urgency=medium

  * Fix error messages of test-groff -b -mandoc -dAD=l -rF0 -rHY=0 -t -w w -z
    on processing update-exim4.conf.8 and exim4-config_files.5. Also make
    mandoc -lint update-exim4.conf.8 happy. (Thanks, Bjarni Ingi Gislason for
    patch and report.)
    Closes: #1014347, #1014349, #1014356
  * 75_01-Fix-exit-on-attempt-to-rewrite-a-malformed-address.-.patch:
    Bug 2903: avoid exit on an attempt to rewrite a malformed address.
  * Add dovecot server-side AUTH example. Closes: #1014235

 -- Andreas Metzler <email address hidden> Wed, 13 Jul 2022 13:22:40 +0200

exim4 (4.96-1) unstable; urgency=low

  * New upstream version, almost identical to RC2.
  * Upload to unstable.
  * Extend debian/NEWS.
  * Update lintian-overrides for new lintian version.

 -- Andreas Metzler <email address hidden> Sun, 26 Jun 2022 14:11:00 +0200

exim4 (4.96~RC2-1) experimental; urgency=low

  * New upstream version.
   + Drop 75_*.patch.

 -- Andreas Metzler <email address hidden> Thu, 16 Jun 2022 10:32:16 +0200

exim4 (4.96~RC1-2) experimental; urgency=low

  * Update from upstream GIT master:
    + 75_70-Debug-clarify-SMTP-DATA-ops-in-transport.patch
    + 75_71-Docs-more-info-on-PIPECONNECT.patch
    + 75_72-TLS-resumption-disable-on-continued-connection.patch
    + 75_73-Logging-distinguish-mem-allocation-errors.patch
    + 75_74-typo.patch
    + 75_75-TLS-resumption-fix-for-PIPECONNECT.patch
    + 75_76-DEBUG-clarify-multiline-smtp-responses.patch
    + 75_77-CHUNKING-fix-second-message-on-conn-when-first-rejec.patch
    + 75_78-CHUNKING-handle-protocol-errors-during-reception.patch

 -- Andreas Metzler <email address hidden> Sat, 28 May 2022 11:41:06 +0200

exim4 (4.96~RC1-1) experimental; urgency=low

  * Merge 4.95-6:
    75_68-GnuTLS-Do-not-free-the-cached-creds-on-transport-con.patch:
    Fix segfault on deferred delivery on first MX. Closes: #1004740
    (Huge thanks to Gedalya for finding/setting up a reproducer and taking
    this upstream.)
  * New upstream version.
  * Pull 75_69-ARC-reset-headers-before-signing-for-secondary-MX.-B.patch to
    fix a crash when built against libarc.

 -- Andreas Metzler <email address hidden> Sat, 21 May 2022 13:09:06 +0200

exim4 (4.96~RC0-1) experimental; urgency=low

  * Drop code for upgrading from ancient (4.80-7 and earlier) versions in
    maintainer-scripts. Closes: #1000962
  * New upstream version.
    + Drop cherrypicked patches.
    + Unfuzz patches (including EDITME*).
    + Uses pcre2 (Closes: #1000107), update b-d to libpcre2-dev.
    + The allow_insecure_tainted_data main config option and the

### Old Ubuntu Delta ###

exim4 (4.96-3ubuntu1) kinetic; urgency=medium

  * Merge with Debian unstable. (LP: #1971274) Remaining changes:
    - Show Ubuntu distribution in SMTP banner
      + d/p/fix_smtp_banner.patch: Show Ubuntu distribution
        in SMTP banner.
      + Build-Depends on lsb-release to detect Distribution.
    - Disable external SPF support to avoid Build-Depends on libspf2-dev
      (only available in universe). SPF can still be implemented via
      spf-tools-perl, as documented in exim4.conf.template. (LP #1952738)
      This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1.
      Changes:
       + d/control: drop Build-Depends on libspf2-dev.
       + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based
         on spfquery.mail-spf-perl from spf-tools-perl.
       + d/EDITME.exim4-heavy.diff: disable support for libspf2.

 -- Christian Ehrhardt <email address hidden> Thu, 14 Jul 2022 10:33:39 +0200

CVE References

Bryce Harrington (bryce)
Changed in exim4 (Ubuntu):
assignee: nobody → Bryce Harrington (bryce)
Bryce Harrington (bryce)
summary: - Merge exim4 from Debian unstable for l-series
+ Merge exim4 from Debian unstable for lunar
Changed in exim4 (Ubuntu):
assignee: Bryce Harrington (bryce) → nobody
Revision history for this message
Bryce Harrington (bryce) wrote :

mdeslaur did the merge for this just now, as he needed it in for a security fix.

https://launchpad.net/ubuntu/lunar/+upload/29952156/+files/exim4_4.96-9ubuntu1_source.changes

Changed in exim4 (Ubuntu):
assignee: nobody → Bryce Harrington (bryce)
status: New → Fix Committed
assignee: Bryce Harrington (bryce) → nobody
assignee: nobody → Marc Deslauriers (mdeslaur)
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package exim4 - 4.96-9ubuntu1

---------------
exim4 (4.96-9ubuntu1) lunar; urgency=medium

  * Merge with Debian unstable. (LP: #1993399) Remaining changes:
    - Show Ubuntu distribution in SMTP banner
      + d/p/fix_smtp_banner.patch: Show Ubuntu distribution
        in SMTP banner.
      + Build-Depends on lsb-release to detect Distribution.
    - Disable external SPF support to avoid Build-Depends on libspf2-dev
      (only available in universe). SPF can still be implemented via
      spf-tools-perl, as documented in exim4.conf.template. (LP #1952738)
      This reverts Vcs-Git commit 494f1fe, first released in 4.95~RC0-1.
      Changes:
       + d/control: drop Build-Depends on libspf2-dev.
       + d/d/c/a/30_exim4-config_check_rcpt: restore SPF logic based
         on spfquery.mail-spf-perl from spf-tools-perl.
       + d/EDITME.exim4-heavy.diff: disable support for libspf2.

exim4 (4.96-9) unstable; urgency=medium

  * Cherrypick three fixes from upstream GIT master:
    + 75_31-Fix-regext-substring-capture-variables-for-null-matc.patch
    + 75_32-Fix-regex-substring-capture-variables-for-null-match.patch
    + 75_34-Fix-regex-substring-capture-commentary.-Bug-2933.patch

exim4 (4.96-8) unstable; urgency=medium

  * Cherrypick two fixes from upstream GIT master:
    + 75_22-Fix-daemon-startup.-Bug-2930.patch
    + 75_23-Fix-reccipients-after-run.-.-Bug-2929.patch

exim4 (4.96-7) unstable; urgency=high

  * Replace 85_dmarc-api-breakage-workaround.diff with version from upstream
    GIT master 75_18-Fix-Build-with-libopendmarc-1.4.x-fixes-2728.patch.
  * 75_19-DMARC-fix-use-after-free-in-dmarc_dns_lookup.patch: Fix
    use-after-free in dmarc.c. VDB-211919 / CVE-2022-3620.
    This does not affect Debian *binary* packages since they are not built
    with DMARC support. Closes: #1022556

exim4 (4.96-6) unstable; urgency=low

  * Use a limit of 1G instead of 2G in message_linelength_limit. (Thanks,
    Frederic Peters) Closes: #1021503

exim4 (4.96-5) unstable; urgency=low

  * Add pointers to /etc/mailname documentation to exim4-config_files.5.
    Closes: #1019946
  * Change remote_smtp transports to set message_linelength_limit = 2G if
    IGNORE_SMTP_LINE_LENGTH_LIMIT was set to avoid accepting messages (due to
    IGNORE_SMTP_LINE_LENGTH_LIMIT disabling the limit in the ACLs) without
    being able to pass them on. Closes: #1019959
  * Pull 75_16-GnuTLS-fix-for-clients-offering-no-TLS-extensions.patch from
    upstream GIT.

exim4 (4.96-4) unstable; urgency=low

  * Cherrypick two fixes from upstream GIT master:
    + 75_05-SPF-fix-memory-accounting-for-error-case.patch
    + 75_08-Fix-regex-n-use-after-free.-Bug-2915.patch
      75_09-Fix-non-WITH_CONTENT_SCAN-build.patch
      75_10-Fix-non-WITH_CONTENT_SCAN-build-2.patch
      75_11-Fix-non-WITH_CONTENT_SCAN-build-3.patch
   * 85_dmarc-api-breakage-workaround.diff: Fix build-error against
     opendmarc-1.4 which broke API and ABI without soname bump.
     Closes: #1014945

 -- Marc Deslauriers <email address hidden> Thu, 08 Dec 2022 12:19:10 -0500

Changed in exim4 (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.