2021-04-27 |
Heiko Schlittermann... | Honour the outcome of parse_extract_address(), testsuit... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28023: Out-of-bounds read in smtp_setup_msg() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | Remove merge artifact |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | Update upgrade notes and source about use of seteuid() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28007: Link attack in Exim's log directory |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28016: Heap out-of-bounds write in parse_fix_p... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Avoid modification of constant data in dkim... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Leave a clean smtp_out input buffer even... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | SECURITY: Always exit when LOG_PANIC_DIE is set |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28012: Missing close-on-exec flag for privileg... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28024: Heap buffer underflow in smtp_ungetc() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28009: Integer overflow in get_stdinput() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28015+28021: New-line injection into spool... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28026: Line truncation and injection in spool_... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28022: Heap out-of-bounds read and write in... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28017: Integer overflow in receive_add_recipient() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Refuse negative and large store allocations |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28013: Heap buffer overflow in parse_fix_phrase() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28011: Heap buffer overflow in queue_run() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28010: Heap out-of-bounds write in main() |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28018: Use-after-free in tls-openssl.c |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Qualys Security... | CVE-2020-28025: Heap out-of-bounds read in pdkim_finish... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28014, CVE-2021-27216: PID file handling |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | Add priv.c: reworked version of priv dropping code |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | CVE-2020-28008: Assorted attacks in Exim's spool directory |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Jeremy Harris | CVE-2020-28019: Failure to reset function pointer after... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: smtp_out: Leave a clean input buffer, even... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Avoid modification of constant data |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Avoid memory corruption in dkim handling |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Avoid decrement of dkim_collect_input if... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Check overrun rcpt_count integer |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Fix safeguard against upward traversal in... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: Don't miss the very last byte when reading... |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Heiko Schlittermann... | SECURITY: off-by-one in smtp transport (read response) |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | Start documenting the things we changed incompatibly. |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | Inline four often-called new functions |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Jeremy Harris | Fixes for compilation |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: rework BDAT receive function handling |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: fix SMTP verb option parsing |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: Avoid integer overflow on too many recipients |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: default recipients_max to 50,000 |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: a second negative store guard |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: refuse too small store allocations |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: fix Qualys CVE-2020-PFPZA |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: fix Qualys CVE-2020-PFPSN |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: fix Qualys CVE-2020-SLCWD |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: pick up more argv length checks |
commit | commitdiff | tree | snapshot |
2021-04-27 |
Phil Pennock | SECURITY: length limits on many cmdline options |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Phil Pennock | Re-ran the conversion of all DH parameters |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Simon Arlott | gen_pkcs3: Terminate string before calling BH_hex2bn() |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Phil Pennock | Default config: reject on too many bad RCPT |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Heiko Schlittermann... | Handle SIGINT as we do with SIGTERM |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Heiko Schlittermann... | Enforce pid_file_path start at "/" |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Heiko Schlittermann... | testsuite: tidy logs/4520 and confs/4520 |
commit | commitdiff | tree | snapshot |
2021-04-21 |
Heiko Schlittermann... | tidy |
commit | commitdiff | tree | snapshot |
2021-02-27 |
Jeremy Harris | Docs: fix description of hosts_try_dane. Bug 2704 |
commit | commitdiff | tree | snapshot |
2021-02-23 |
Jeremy Harris | Bulid: fix DISABLE_PIPE_CONNECT build. Bug 2703 |
commit | commitdiff | tree | snapshot |
2021-02-22 |
Jeremy Harris | Fix list-expansion for various domainlists, having... |
commit | commitdiff | tree | snapshot |
2021-02-19 |
Jeremy Harris | Fix build for platforms not having ulong |
commit | commitdiff | tree | snapshot |
2021-02-19 |
Heiko Schlichting | Fix weight calculation for socks_proxy. Bug 2694 |
commit | commitdiff | tree | snapshot |
2021-02-19 |
Heiko Schlichting | Fix weight calculation for spamd_address. Bug 2694 |
commit | commitdiff | tree | snapshot |
2021-02-13 |
Jeremy Harris | Fix FreeBSD 13 build |
commit | commitdiff | tree | snapshot |
2021-02-06 |
Jeremy Harris | Fix handling of server which follows a RCPT 452... |
commit | commitdiff | tree | snapshot |
2021-02-06 |
Jeremy Harris | Fix daemon-SIGHUP on FreeBSD |
commit | commitdiff | tree | snapshot |
2021-01-29 |
Jeremy Harris | Testsuite: missing files |
commit | commitdiff | tree | snapshot |
2021-01-29 |
Jeremy Harris | Lookups: fix $local_part_data for a match on a... |
commit | commitdiff | tree | snapshot |
2021-01-12 |
Jeremy Harris | Auths: in plaintext authenticator, fix parsing of conse... |
commit | commitdiff | tree | snapshot |
2021-01-12 |
Jeremy Harris | Utilities: harden exim_tidydb against corrupt wait... |
commit | commitdiff | tree | snapshot |
2021-01-12 |
Jeremy Harris | Fix build on GNU/Hurd [supports openat()]. Bug 2608 |
commit | commitdiff | tree | snapshot |
2021-01-12 |
Jeremy Harris | Fix build warning on 32-bit int platfowms. Bug 2678 |
commit | commitdiff | tree | snapshot |
2020-12-24 |
Jeremy Harris | Fix ${listextract } from a tainted list |
commit | commitdiff | tree | snapshot |
2020-12-20 |
Jeremy Harris | Fix local delivery delay when combined with remote... |
commit | commitdiff | tree | snapshot |
2020-12-17 |
Jeremy Harris | Fix the PIPE_CONNECT feature control in the template... |
commit | commitdiff | tree | snapshot |
2020-12-17 |
Jeremy Harris | Remove the X_ prefix from the PIPE_CONNECT SMTP service... |
commit | commitdiff | tree | snapshot |
2020-12-16 |
Jeremy Harris | Fix matching of long addresses. Bug 2677 |
commit | commitdiff | tree | snapshot |
2020-11-02 |
Jeremy Harris | Pass authenticator pubname through spool. Bug 2648 |
commit | commitdiff | tree | snapshot |
2020-10-30 |
Jeremy Harris | LDAP: fix taint-check in server list walk. Bug... |
commit | commitdiff | tree | snapshot |
2020-09-15 |
Richard Clayton | eximon: fix FreeBSD build |
commit | commitdiff | tree | snapshot |
2020-09-06 |
Jeremy Harris | Fix non-TLS build |
commit | commitdiff | tree | snapshot |
2020-09-06 |
Jeremy Harris | GnuTLS: clear errno before any data i/o op, so error... |
commit | commitdiff | tree | snapshot |
2020-08-31 |
Phil Pennock | Fix utilities indexing |
commit | commitdiff | tree | snapshot |
2020-08-27 |
Jeremy Harris | Fix non-DANE build |
commit | commitdiff | tree | snapshot |
2020-08-26 |
Jeremy Harris | DANE: Fix 2 messages from queue case |
commit | commitdiff | tree | snapshot |
2020-08-26 |
Jeremy Harris | Fix non-DANE build |
commit | commitdiff | tree | snapshot |
2020-08-26 |
Jeremy Harris | DANE: Fix 2-rcpt message, diff domins case. Bug 2265 |
commit | commitdiff | tree | snapshot |
2020-08-26 |
Jeremy Harris | DANE: force SNI to use $domain. Bug 2265 |
commit | commitdiff | tree | snapshot |
2020-08-26 |
Gavan | Taint: fix off-by-one in is_tainted(). Bug 2634 |
commit | commitdiff | tree | snapshot |
2020-08-24 |
Jeremy Harris | Build: ifdef guard for EXPERIMENTAL_QUEUEFILE |
commit | commitdiff | tree | snapshot |
2020-08-21 |
Gavan | Taint: fix off-by-one in is_tainted(). Bug 2634 |
commit | commitdiff | tree | snapshot |
2020-08-14 |
Jeremy Harris | Fix ${readsocket } eol-replacement. Bug 2630 |
commit | commitdiff | tree | snapshot |
2020-08-09 |
Jeremy Harris | Fix spelling of local_part_data in docs and debug output |
commit | commitdiff | tree | snapshot |
2020-07-16 |
Heiko Schlittermann... | debug_print_socket(): output formatting |
commit | commitdiff | tree | snapshot |
2020-07-16 |
Heiko Schlittermann... | Fix debug_print_socket() |
commit | commitdiff | tree | snapshot |
2020-07-13 |
Jeremy Harris | Taint: fix ACL "spam" condition, to permit tainted... |
commit | commitdiff | tree | snapshot |
2020-07-09 |
Jeremy Harris | Fix taint trap in parse_fix_phrase(). Bug 2617 |
commit | commitdiff | tree | snapshot |
2020-07-07 |
Guillaume Outters | Fix DKIM signing to always ;-terminate. Bug 2295 |
commit | commitdiff | tree | snapshot |
2020-07-03 |
Jeremy Harris | typoes |
commit | commitdiff | tree | snapshot |
2020-06-30 |
Jeremy Harris | Fix message-reception clock usage. Bug 2615 |
commit | commitdiff | tree | snapshot |
2020-06-29 |
Jeremy Harris | Taint: fix ACL "spam" condition, to permit tainted... |
commit | commitdiff | tree | snapshot |
2020-06-28 |
Jeremy Harris | Sqlite: fix segfault on bad/missing sqlite_dbfile.... |
commit | commitdiff | tree | snapshot |
next |