Merge branch 'qualys-2020'
[exim.git] / src /
2021-05-27 Heiko Schlitterman... Merge branch 'qualys-2020'
2021-05-27 Heiko Schlitterman... Fix BDAT issue for body w/o trailing CRLF (again Bug...
2021-05-27 Heiko Schlitterman... rewrite: revert to unchecked result of parse_extract_ad...
2021-05-27 Heiko Schlitterman... Honour the outcome of parse_extract_address(), testsuit...
2021-05-27 Heiko Schlitterman... Update upgrade notes and source about use of seteuid()
2021-05-27 Qualys Security... CVE-2020-28007: Link attack in Exim's log directory
2021-05-27 Heiko Schlitterman... CVE-2020-28016: Heap out-of-bounds write in parse_fix_p...
2021-05-27 Heiko Schlitterman... SECURITY: Avoid modification of constant data in dkim...
2021-05-27 Heiko Schlitterman... SECURITY: Leave a clean smtp_out input buffer even...
2021-05-27 Qualys Security... SECURITY: Always exit when LOG_PANIC_DIE is set
2021-05-27 Qualys Security... CVE-2020-28012: Missing close-on-exec flag for privileg...
2021-05-27 Qualys Security... CVE-2020-28024: Heap buffer underflow in smtp_ungetc()
2021-05-27 Qualys Security... CVE-2020-28009: Integer overflow in get_stdinput()
2021-05-27 Qualys Security... CVE-2020-28015+28021: New-line injection into spool...
2021-05-27 Heiko Schlitterman... CVE-2020-28026: Line truncation and injection in spool_...
2021-05-27 Heiko Schlitterman... CVE-2020-28022: Heap out-of-bounds read and write in...
2021-05-27 Heiko Schlitterman... CVE-2020-28017: Integer overflow in receive_add_recipient()
2021-05-27 Heiko Schlitterman... SECURITY: Refuse negative and large store allocations
2021-05-27 Heiko Schlitterman... CVE-2020-28013: Heap buffer overflow in parse_fix_phrase()
2021-05-27 Qualys Security... CVE-2020-28011: Heap buffer overflow in queue_run()
2021-05-27 Heiko Schlitterman... CVE-2020-28010: Heap out-of-bounds write in main()
2021-05-27 Qualys Security... CVE-2020-28018: Use-after-free in tls-openssl.c
2021-05-27 Qualys Security... CVE-2020-28025: Heap out-of-bounds read in pdkim_finish...
2021-05-27 Heiko Schlitterman... CVE-2020-28014, CVE-2021-27216: PID file handling
2021-05-27 Heiko Schlitterman... Add priv.c: reworked version of priv dropping code
2021-05-27 Heiko Schlitterman... CVE-2020-28008: Assorted attacks in Exim's spool directory
2021-05-27 Jeremy HarrisCVE-2020-28019: Failure to reset function pointer after...
2021-05-27 Heiko Schlitterman... SECURITY: smtp_out: Leave a clean input buffer, even...
2021-05-27 Heiko Schlitterman... SECURITY: Avoid modification of constant data
2021-05-27 Heiko Schlitterman... SECURITY: Avoid memory corruption in dkim handling
2021-05-27 Heiko Schlitterman... SECURITY: Avoid decrement of dkim_collect_input if...
2021-05-27 Heiko Schlitterman... SECURITY: Check overrun rcpt_count integer
2021-05-27 Heiko Schlitterman... SECURITY: Fix safeguard against upward traversal in...
2021-05-27 Heiko Schlitterman... SECURITY: Don't miss the very last byte when reading...
2021-05-27 Heiko Schlitterman... SECURITY: off-by-one in smtp transport (read response)
2021-05-27 Phil PennockStart documenting the things we changed incompatibly.
2021-05-27 Phil PennockInline four often-called new functions
2021-05-27 Jeremy HarrisFixes for compilation
2021-05-27 Phil PennockSECURITY: rework BDAT receive function handling
2021-05-27 Phil PennockSECURITY: fix SMTP verb option parsing
2021-05-27 Phil PennockSECURITY: Avoid integer overflow on too many recipients
2021-05-27 Phil PennockSECURITY: default recipients_max to 50,000
2021-05-27 Phil PennockSECURITY: a second negative store guard
2021-05-27 Phil PennockSECURITY: refuse too small store allocations
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPZA
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPSN
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-SLCWD
2021-05-27 Phil PennockSECURITY: pick up more argv length checks
2021-05-27 Phil PennockSECURITY: length limits on many cmdline options
2021-05-27 Phil PennockRe-ran the conversion of all DH parameters
2021-05-27 Simon Arlottgen_pkcs3: Terminate string before calling BH_hex2bn()
2021-05-27 Phil PennockDefault config: reject on too many bad RCPT
2021-05-27 Heiko Schlitterman... Handle SIGINT as we do with SIGTERM
2021-05-27 Heiko Schlitterman... Enforce pid_file_path start at "/"
2021-05-27 Heiko Schlitterman... tidy
2021-05-25 Jeremy HarrisUse separate line in Received: header for timestamp
2021-05-17 Heiko Schlitterman... Fix host_name_lookup (Close 2747)
2021-05-12 Jeremy HarrisNamed Queues: fix immediate-delivery. Bug 2743
2021-05-11 Jeremy HarrisOpenBSD: remove redundant platform define
2021-05-11 Heiko Schlitterman... TLS DANE to multiple recipients w/ different DNSSec...
2021-05-11 Heiko Schlitterman... Fix DANE + SNI handling (Bug 2265)
2021-05-08 Jeremy HarrisDNS: Better handling of SOA when negative-caching lookups
2021-05-05 Jeremy Harriswip
2021-05-04 Jeremy HarrisDebug: output dmarc library version
2021-05-04 Jeremy HarrisFix ${ipv6norm:}
2021-04-25 Jeremy Harristidying
2021-04-25 Jeremy HarrisTestsuite: tidying
2021-04-25 Jeremy HarrisTaint: enforce untainted ACL text line
2021-04-21 Simon ArlottFix time usage on non-subtick-resolution platforms
2021-04-18 Jeremy HarrisExperimental: ESMTP LIMITS extension
2021-04-16 Jeremy HarrisLog queue_time and queue_time_overall exclusive of...
2021-04-14 Jeremy Harris taint: allow appendfile create_file option to speci...
2021-04-12 Heiko Schlitterman... Set mainlog_name and rejectlog_name unconditionally.
2021-04-10 Jeremy HarrisLogging: better tracking of continued-connection use
2021-04-07 Jeremy HarrisPass proxy addresses/ports to continued trasnports...
2021-04-05 Jeremy HarrisDisable server-side close timing sophistication on...
2021-04-03 Jeremy HarrisTLS: harden error-detection in TLS proxy process
2021-04-03 Jeremy HarrisMake smtp_accept_max_per_connection expanded
2021-04-02 Heiko Schlitterman... build: Allow environment EXIM_RELEASE_VERSION
2021-04-02 Jeremy Harristypoes
2021-03-28 Jeremy HarrisMemory handling: fix size backoff on store-reset
2021-03-28 Jeremy HarrisMemory debug: do not try to save allocation bytes used...
2021-03-27 Jeremy HarrisGnuTLS: use a less bogus-looking temporary filename...
2021-03-27 Jeremy HarrisAvoid all tail-end pipelining on retries
2021-03-25 Heiko Schlitterman... Build: use PHDRS set in the toplevel Makefile
2021-03-23 Jeremy HarrisAvoid building routines calling other not incuded in...
2021-03-22 Jeremy HarrisAvoid clearing first_delivery flag on the initial half...
2021-03-21 Jeremy HarrisBuiltin macros for Experimental features
2021-03-21 Jeremy HarrisDNS: explicit alloc/free of workspace
2021-03-20 Jeremy HarrisMemory debug: track max pool order, fix nonpool accounting
2021-03-20 Jeremy HarrisMemory handling: exponentially-increasing alloc size
2021-03-20 Jeremy HarrisDKIM: Force use of tainted mem for headers
2021-03-20 Jeremy HarrisAvoid needless alloc for null header
2021-03-20 Jeremy HarrisDKIM: verify using separate pool-pair, reset per message
2021-03-17 Jeremy Harris Linux and the BSDs have getifaddrs(). Use it and...
2021-03-16 Jeremy HarrisPipeline QUIT after data
2021-03-16 Jeremy HarrisDebug: tag client SMTP output with buffering qualifier
2021-03-15 Heiko Schlitterman... Fix error messages in dbfn_open
2021-03-15 Jeremy HarrisDoc: more explicit hinting on tls_try_verify_hosts.
2021-03-09 Bernd KuhlsFix uClibc build
next