[ubuntu/mantic-proposed] exim4 4.96-17ubuntu2 (Accepted)

Allen Huang allen.huang at canonical.com
Tue Oct 3 18:35:38 UTC 2023 

exim4 (4.96-17ubuntu2) mantic; urgency=medium

  * SECURITY UPDATE: information disclosure
    - debian/patches/CVE-2023-42114.patch: fix possible OOB read in
      SPA authenticator
    - CVE-2023-42114
  * SECURITY UPDATE: remote code execution
    - debian/patches/CVE-2023-42115.patch: fix possible OOB write in
      external authenticator
    - CVE-2023-42115
  * SECURITY UPDATE: remote code execution
    - debian/patches/CVE-2023-42116.patch: fix possible OOB write in
      SPA authenticator
    - CVE-2023-42116
  * debian/patches/CVE-2023-42114_15_16.patch:
    - use uschar more in spa authenticator

Date: Tue, 03 Oct 2023 14:35:45 +0100
Changed-By: Allen Huang <allen.huang at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/exim4/4.96-17ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 03 Oct 2023 14:35:45 +0100
Source: exim4
Built-For-Profiles: noudeb
Architecture: source
Version: 4.96-17ubuntu2
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Allen Huang <allen.huang at canonical.com>
Changes:
 exim4 (4.96-17ubuntu2) mantic; urgency=medium
 .
   * SECURITY UPDATE: information disclosure
     - debian/patches/CVE-2023-42114.patch: fix possible OOB read in
       SPA authenticator
     - CVE-2023-42114
   * SECURITY UPDATE: remote code execution
     - debian/patches/CVE-2023-42115.patch: fix possible OOB write in
       external authenticator
     - CVE-2023-42115
   * SECURITY UPDATE: remote code execution
     - debian/patches/CVE-2023-42116.patch: fix possible OOB write in
       SPA authenticator
     - CVE-2023-42116
   * debian/patches/CVE-2023-42114_15_16.patch:
     - use uschar more in spa authenticator
Checksums-Sha1:
 6be51bf2093baacba60c7d5561d51866a1f00413 2763 exim4_4.96-17ubuntu2.dsc
 18cc3f63bd049c69858efa38ab79f0ad97dcfa29 499844 exim4_4.96-17ubuntu2.debian.tar.xz
 de9d35aa584d124d96d95f5c3aa7f9b49e55eff7 8994 exim4_4.96-17ubuntu2_source.buildinfo
Checksums-Sha256:
 594a6add783fe7bb84b8bba5595984d52d170aacec9814c664c8c287877b1503 2763 exim4_4.96-17ubuntu2.dsc
 dd9094bd241ec1f2448f608e9a5a7ed7232ace6f7a2864ec5ac74645d1856b9e 499844 exim4_4.96-17ubuntu2.debian.tar.xz
 4ebccb398dcf657ba354be1cb2a3f6da2cae9cc611f76951f5ffaf9dd121fcbd 8994 exim4_4.96-17ubuntu2_source.buildinfo
Files:
 5c124debe871216b0436f9bbbc3028a0 2763 mail standard exim4_4.96-17ubuntu2.dsc
 0e9d4c96032829868e75199ca913d07b 499844 mail standard exim4_4.96-17ubuntu2.debian.tar.xz
 a3f4bc23a9fae6d1042ef59afb560a72 8994 mail standard exim4_4.96-17ubuntu2_source.buildinfo
Original-Maintainer: Exim4 Maintainers <pkg-exim4-maintainers at lists.alioth.debian.org>

More information about the mantic-changes mailing list