Accepted exim4 4.92-8+deb10u8 (source) into oldoldstable
- To: debian-lts-changes@lists.debian.org, dispatch@tracker.debian.org
- Subject: Accepted exim4 4.92-8+deb10u8 (source) into oldoldstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Mon, 02 Oct 2023 15:40:19 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: exim4_4.92-8+deb10u8_source.changes
- Debian-source: exim4
- Debian-suite: oldoldstable
- Debian-version: 4.92-8+deb10u8
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=724ICRyQNPSRVeJhSz1EdzMNm/nO5ixVr2cSpu6F6Co=; b=O4IVUhKpxE0oCqV3xwDHkRx54L A5DXsMMUR0/yhpMY45oCxtyAh53dIEwgIP5uz3vkJIZ32/AhMzMgF1tSPSxbYggb4GYnDqx5YNwvt kOD8onnu/7DbeVmmPZ9j/S/wStZWhfzswnww8drdeGwXz7Y7KO6npJfikizAE/ERMIJRlwB4PMBHY 4+jzh2WyxSkS8M0V2S+01kK1+RxG+4yny4oHa3Igv5Ywf+6wwPcxv7RoXiKs9p403ppIhk5aCYjk+ 9WYT6o+d/T4fNaPin6kKDadk/BK+uArOJsoTXPA9d/s6bOrfybD7/qEeo87Gk8fEowpbXgMzCxLZb BK9aFPCQ==;
- Mail-followup-to: debian-lts@lists.debian.org
- Message-id: <E1qnL1v-0052RU-GT@seger.debian.org>
- Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 2 Oct 2023 16:48:25 CEST
Source: exim4
Architecture: source
Version: 4.92-8+deb10u8
Distribution: buster-security
Urgency: high
Maintainer: Exim4 Maintainers <pkg-exim4-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Checksums-Sha1:
8879fbb1073187fa29c3965d85ab4f169bf38178 2771 exim4_4.92-8+deb10u8.dsc
315680c3213775ddaf742d90d11ea2e0a6c88b50 500016 exim4_4.92-8+deb10u8.debian.tar.xz
ec3016ffa547144f3c722828e27e0cd61b367b3e 11688 exim4_4.92-8+deb10u8_amd64.buildinfo
Checksums-Sha256:
1254e1f182870850e4203e662e624faf39f08d04c1c331a6eb9911218a0e0c23 2771 exim4_4.92-8+deb10u8.dsc
13b695f922f993da9286cdfad08dbcdde1a8ed6cf487e8ac065f842a6e1d626b 500016 exim4_4.92-8+deb10u8.debian.tar.xz
442d921da5fb0e853e6b314aa43d7445b557e87139267fd40d93dabe0ee1aa1f 11688 exim4_4.92-8+deb10u8_amd64.buildinfo
Changes:
exim4 (4.92-8+deb10u8) buster-security; urgency=high
.
* Non-maintainer upload by the LTS team.
* Address SPA authenticator vulnerabilities (CVE-2023-42114, CVE-2023-42116)
- Auths: use uschar more in spa authenticator
- Auths: fix possible OOB write in SPA authenticator (CVE-2023-42116)
- Auths: fix possible OOB read in SPA authenticator (CVE-2023-42114)
Files:
8fbcc1278720269eeb1886d2a6484d1b 2771 mail standard exim4_4.92-8+deb10u8.dsc
6e639b9c6f625ba546e53702a5a19478 500016 mail standard exim4_4.92-8+deb10u8.debian.tar.xz
4b85f9242711ec9637214c3d9cbeaf8a 11688 mail standard exim4_4.92-8+deb10u8_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=GGrd
-----END PGP SIGNATURE-----