Package "exim4"

  exim4 (4.95-4ubuntu2.10) jammy-security; urgency=medium

  * SECURITY REGRESSION: taint mismatch error (LP: #2152830)
    - debian/patches/CVE-2023-42117-2.patch: Use project-standard memory
      management rather than alloca() in src/string.c.

 -- Marc Deslauriers <email address hidden> Tue, 09 Jun 2026 08:58:06 -0400

  exim4 (4.95-4ubuntu2.9) jammy-security; urgency=medium

  * SECURITY UPDATE: information disclosure in PROXYv2 (LP: #2154366)
    - debian/patches/202605191-security.patch: Security: fix PROXYv2
      uninitialised-stack disclosure (EXIM-Security-2026-05-16.1) in
      src/smtp_in.c.
    - CVE number pending

 -- Marc Deslauriers <email address hidden> Wed, 27 May 2026 10:23:14 -0400

  exim4 (4.95-4ubuntu2.8) jammy-security; urgency=medium

  * SECURITY UPDATE: one-byte write into freed buffer (LP: #2152202)
    - debian/patches/202605011-security.patch: TLS: on rxd close with CHUNKING
      active, clean the input processing stack in src/functions.h,
      src/smtp_in.c, src/tls-gnu.c, src/tls-openssl.c.
    - unknown

 -- Marc Deslauriers <email address hidden> Mon, 11 May 2026 19:43:58 +0200

  exim4 (4.95-4ubuntu2.7) jammy-security; urgency=medium

  * SECURITY UPDATE: Multiple security issues
    - debian/patches/CVE-2026-4068*.patch: backported upstream fixes.
    - CVE-2026-40685 - Possible OOB read/write on corrupt JSON in header
    - CVE-2026-40686 - Possible OOB read with large UTF8 trailing chars
    - CVE-2026-40687 - Possible OOB read/write with SPA authenticator

 -- Marc Deslauriers <email address hidden> Wed, 29 Apr 2026 13:23:54 -0400

  exim4 (4.95-4ubuntu2.6) jammy-security; urgency=medium

  * SECURITY UPDATE: Multiline header filename parsing issue
    - debian/patches/CVE-2024-39929-*.patch: Fix MIME parsing of filenames
      specified using multiple parameters.
    - CVE-2024-39929

 -- Fabian Toepfer <email address hidden> Tue, 30 Jul 2024 21:25:34 +0200