lp:ubuntu/breezy-security/exim4
- Get this branch:
- bzr branch lp:ubuntu/breezy-security/exim4
Branch merges
Branch information
Recent revisions
- 4. By Martin Pitt
-
* SECURITY UPDATE: database SQL injection in certain client encodings.
* Add debian/patches/ 71_sql_ quote_escaping. dpatch:
- src/lookups/{my,pg} sql.c: In the string quoting functions, quote ' as
'', not as \'. \' can be abused for SQL injection in some encodings, and
'' is SQL standard anyway.
* CVE-2006-2314 (for PostgreSQL), CVE-2006-2753 (for MySQL) - 3. By Marc Haber <email address hidden>
-
* new upstream version 4.51. (mh)
* adapt 70_remove_exim-users_ references
* remove 37_gnutlsparams
* adapt 36_pcre
* adapt 31_eximmanpage
* fix package priorities to have them in sync with override again. (mh)
* Fix error in nb (Norwegian) translation.
Thanks to Helge Hafting. (mh). Closes: #315775
* Standards-Version: 3.6.2, no changes needed. (mh) - 2. By Andreas Metzler <email address hidden>
-
* urgency high because this upload fixes two minor security issues.
* more documentation for dc_localdelivery in update-exim4.conf. 8.
* Move slightly more expensive tests in rcpt ACL further down. (This only
changes commented out example code.) (Closes: #267708)
* Fix 62_statvfs to work with older versions of dpatch. (Closes: #286302)
* Version dpatch build-dependency to safeguard against reintroducing this
bug.
* In comment point out that using saslauthd for SMTP AUTH requires giving
exim privileges to use it.
* New patch 66_can2005-0021_can2005- 0022.dpatch from
http://www.exim. org/mail- archives/ exim-users/ Week-of- Mon-20050103/ msg00028. html
fixing two buffer overflows labeled CAN-2005-0021 and CAN-2005-0022
(mh/am).
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/exim4