exim.git
2021-04-27 Heiko Schlittermann... Honour the outcome of parse_extract_address(), testsuit...
2021-04-27 Qualys Security... CVE-2020-28023: Out-of-bounds read in smtp_setup_msg()
2021-04-27 Heiko Schlittermann... Remove merge artifact
2021-04-27 Heiko Schlittermann... Update upgrade notes and source about use of seteuid()
2021-04-27 Qualys Security... CVE-2020-28007: Link attack in Exim's log directory
2021-04-27 Heiko Schlittermann... CVE-2020-28016: Heap out-of-bounds write in parse_fix_p...
2021-04-27 Heiko Schlittermann... SECURITY: Avoid modification of constant data in dkim...
2021-04-27 Heiko Schlittermann... SECURITY: Leave a clean smtp_out input buffer even...
2021-04-27 Qualys Security... SECURITY: Always exit when LOG_PANIC_DIE is set
2021-04-27 Qualys Security... CVE-2020-28012: Missing close-on-exec flag for privileg...
2021-04-27 Qualys Security... CVE-2020-28024: Heap buffer underflow in smtp_ungetc()
2021-04-27 Qualys Security... CVE-2020-28009: Integer overflow in get_stdinput()
2021-04-27 Qualys Security... CVE-2020-28015+28021: New-line injection into spool...
2021-04-27 Heiko Schlittermann... CVE-2020-28026: Line truncation and injection in spool_...
2021-04-27 Heiko Schlittermann... CVE-2020-28022: Heap out-of-bounds read and write in...
2021-04-27 Heiko Schlittermann... CVE-2020-28017: Integer overflow in receive_add_recipient()
2021-04-27 Heiko Schlittermann... SECURITY: Refuse negative and large store allocations
2021-04-27 Heiko Schlittermann... CVE-2020-28013: Heap buffer overflow in parse_fix_phrase()
2021-04-27 Qualys Security... CVE-2020-28011: Heap buffer overflow in queue_run()
2021-04-27 Heiko Schlittermann... CVE-2020-28010: Heap out-of-bounds write in main()
2021-04-27 Qualys Security... CVE-2020-28018: Use-after-free in tls-openssl.c
2021-04-27 Qualys Security... CVE-2020-28025: Heap out-of-bounds read in pdkim_finish...
2021-04-27 Heiko Schlittermann... CVE-2020-28014, CVE-2021-27216: PID file handling
2021-04-27 Heiko Schlittermann... Add priv.c: reworked version of priv dropping code
2021-04-27 Heiko Schlittermann... CVE-2020-28008: Assorted attacks in Exim's spool directory
2021-04-27 Jeremy HarrisCVE-2020-28019: Failure to reset function pointer after...
2021-04-27 Heiko Schlittermann... SECURITY: smtp_out: Leave a clean input buffer, even...
2021-04-27 Heiko Schlittermann... SECURITY: Avoid modification of constant data
2021-04-27 Heiko Schlittermann... SECURITY: Avoid memory corruption in dkim handling
2021-04-27 Heiko Schlittermann... SECURITY: Avoid decrement of dkim_collect_input if...
2021-04-27 Heiko Schlittermann... SECURITY: Check overrun rcpt_count integer
2021-04-27 Heiko Schlittermann... SECURITY: Fix safeguard against upward traversal in...
2021-04-27 Heiko Schlittermann... SECURITY: Don't miss the very last byte when reading...
2021-04-27 Heiko Schlittermann... SECURITY: off-by-one in smtp transport (read response)
2021-04-27 Phil PennockStart documenting the things we changed incompatibly.
2021-04-27 Phil PennockInline four often-called new functions
2021-04-27 Jeremy HarrisFixes for compilation
2021-04-27 Phil PennockSECURITY: rework BDAT receive function handling
2021-04-27 Phil PennockSECURITY: fix SMTP verb option parsing
2021-04-27 Phil PennockSECURITY: Avoid integer overflow on too many recipients
2021-04-27 Phil PennockSECURITY: default recipients_max to 50,000
2021-04-27 Phil PennockSECURITY: a second negative store guard
2021-04-27 Phil PennockSECURITY: refuse too small store allocations
2021-04-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPZA
2021-04-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPSN
2021-04-27 Phil PennockSECURITY: fix Qualys CVE-2020-SLCWD
2021-04-27 Phil PennockSECURITY: pick up more argv length checks
2021-04-27 Phil PennockSECURITY: length limits on many cmdline options
2021-04-21 Phil PennockRe-ran the conversion of all DH parameters
2021-04-21 Simon Arlottgen_pkcs3: Terminate string before calling BH_hex2bn()
2021-04-21 Phil PennockDefault config: reject on too many bad RCPT
2021-04-21 Heiko Schlittermann... Handle SIGINT as we do with SIGTERM
2021-04-21 Heiko Schlittermann... Enforce pid_file_path start at "/"
2021-04-21 Heiko Schlittermann... testsuite: tidy logs/4520 and confs/4520
2021-04-21 Heiko Schlittermann... tidy
2021-02-27 Jeremy HarrisDocs: fix description of hosts_try_dane. Bug 2704
2021-02-23 Jeremy HarrisBulid: fix DISABLE_PIPE_CONNECT build. Bug 2703
2021-02-22 Jeremy HarrisFix list-expansion for various domainlists, having...
2021-02-19 Jeremy HarrisFix build for platforms not having ulong
2021-02-19 Heiko SchlichtingFix weight calculation for socks_proxy. Bug 2694
2021-02-19 Heiko SchlichtingFix weight calculation for spamd_address. Bug 2694
2021-02-13 Jeremy HarrisFix FreeBSD 13 build
2021-02-06 Jeremy Harris Fix handling of server which follows a RCPT 452...
2021-02-06 Jeremy HarrisFix daemon-SIGHUP on FreeBSD
2021-01-29 Jeremy HarrisTestsuite: missing files
2021-01-29 Jeremy Harris Lookups: fix $local_part_data for a match on a...
2021-01-12 Jeremy HarrisAuths: in plaintext authenticator, fix parsing of conse...
2021-01-12 Jeremy HarrisUtilities: harden exim_tidydb against corrupt wait...
2021-01-12 Jeremy HarrisFix build on GNU/Hurd [supports openat()]. Bug 2608
2021-01-12 Jeremy HarrisFix build warning on 32-bit int platfowms. Bug 2678
2020-12-24 Jeremy HarrisFix ${listextract } from a tainted list
2020-12-20 Jeremy HarrisFix local delivery delay when combined with remote...
2020-12-17 Jeremy HarrisFix the PIPE_CONNECT feature control in the template...
2020-12-17 Jeremy HarrisRemove the X_ prefix from the PIPE_CONNECT SMTP service...
2020-12-16 Jeremy Harris Fix matching of long addresses. Bug 2677
2020-11-02 Jeremy HarrisPass authenticator pubname through spool. Bug 2648
2020-10-30 Jeremy Harris LDAP: fix taint-check in server list walk. Bug...
2020-09-15 Richard Claytoneximon: fix FreeBSD build
2020-09-06 Jeremy HarrisFix non-TLS build
2020-09-06 Jeremy HarrisGnuTLS: clear errno before any data i/o op, so error...
2020-08-31 Phil PennockFix utilities indexing
2020-08-27 Jeremy HarrisFix non-DANE build
2020-08-26 Jeremy HarrisDANE: Fix 2 messages from queue case
2020-08-26 Jeremy HarrisFix non-DANE build
2020-08-26 Jeremy HarrisDANE: Fix 2-rcpt message, diff domins case. Bug 2265
2020-08-26 Jeremy HarrisDANE: force SNI to use $domain. Bug 2265
2020-08-26 GavanTaint: fix off-by-one in is_tainted(). Bug 2634
2020-08-24 Jeremy HarrisBuild: ifdef guard for EXPERIMENTAL_QUEUEFILE
2020-08-21 GavanTaint: fix off-by-one in is_tainted(). Bug 2634
2020-08-14 Jeremy HarrisFix ${readsocket } eol-replacement. Bug 2630
2020-08-09 Jeremy HarrisFix spelling of local_part_data in docs and debug output
2020-07-16 Heiko Schlittermann... debug_print_socket(): output formatting
2020-07-16 Heiko Schlittermann... Fix debug_print_socket()
2020-07-13 Jeremy HarrisTaint: fix ACL "spam" condition, to permit tainted...
2020-07-09 Jeremy HarrisFix taint trap in parse_fix_phrase(). Bug 2617
2020-07-07 Guillaume OuttersFix DKIM signing to always ;-terminate. Bug 2295
2020-07-03 Jeremy Harristypoes
2020-06-30 Jeremy HarrisFix message-reception clock usage. Bug 2615
2020-06-29 Jeremy HarrisTaint: fix ACL "spam" condition, to permit tainted...
2020-06-28 Jeremy HarrisSqlite: fix segfault on bad/missing sqlite_dbfile....
next