exim.git
2021-06-04 Jeremy HarrisTestsuite: regen certificates suite with fixed Authorit...
2021-06-03 Jeremy HarrisDKIM: under GnuTLS, permit weak algorithms
2021-06-03 Jeremy HarrisTestsuite: use higher-spec certs, for more-recent GnuTL...
2021-05-28 Jeremy Harristidying
2021-05-28 Jeremy HarrisUpdate testcase output to match newly applied default...
2021-05-28 Jeremy HarrisFix testsuite output for DB cases
2021-05-28 Jeremy Harristidying
2021-05-28 Jeremy HarrisLogging: avoid pause during log-open under testsuite
2021-05-28 Jeremy HarrisFix dmarc build
2021-05-28 Jeremy HarrisDocs: enhance section on redirect router :defer: &...
2021-05-27 Heiko Schlittermann... Merge branch 'qualys-2020'
2021-05-27 Heiko Schlittermann... Fix BDAT issue for body w/o trailing CRLF (again Bug...
2021-05-27 Heiko Schlittermann... testsuite: reproduce BDAT with missing eol (Bug 1974)
2021-05-27 Heiko Schlittermann... Cleanup docs on cve-2020-qualys, point to the Exim...
2021-05-27 Heiko Schlittermann... rewrite: revert to unchecked result of parse_extract_ad...
2021-05-27 Heiko Schlittermann... Honour the outcome of parse_extract_address(), testsuit...
2021-05-27 Heiko Schlittermann... Update upgrade notes and source about use of seteuid()
2021-05-27 Qualys Security... CVE-2020-28007: Link attack in Exim's log directory
2021-05-27 Heiko Schlittermann... CVE-2020-28016: Heap out-of-bounds write in parse_fix_p...
2021-05-27 Heiko Schlittermann... SECURITY: Avoid modification of constant data in dkim...
2021-05-27 Heiko Schlittermann... SECURITY: Leave a clean smtp_out input buffer even...
2021-05-27 Qualys Security... SECURITY: Always exit when LOG_PANIC_DIE is set
2021-05-27 Qualys Security... CVE-2020-28012: Missing close-on-exec flag for privileg...
2021-05-27 Qualys Security... CVE-2020-28024: Heap buffer underflow in smtp_ungetc()
2021-05-27 Qualys Security... CVE-2020-28009: Integer overflow in get_stdinput()
2021-05-27 Qualys Security... CVE-2020-28015+28021: New-line injection into spool...
2021-05-27 Heiko Schlittermann... CVE-2020-28026: Line truncation and injection in spool_...
2021-05-27 Heiko Schlittermann... CVE-2020-28022: Heap out-of-bounds read and write in...
2021-05-27 Heiko Schlittermann... CVE-2020-28017: Integer overflow in receive_add_recipient()
2021-05-27 Heiko Schlittermann... SECURITY: Refuse negative and large store allocations
2021-05-27 Heiko Schlittermann... CVE-2020-28013: Heap buffer overflow in parse_fix_phrase()
2021-05-27 Qualys Security... CVE-2020-28011: Heap buffer overflow in queue_run()
2021-05-27 Heiko Schlittermann... CVE-2020-28010: Heap out-of-bounds write in main()
2021-05-27 Qualys Security... CVE-2020-28018: Use-after-free in tls-openssl.c
2021-05-27 Qualys Security... CVE-2020-28025: Heap out-of-bounds read in pdkim_finish...
2021-05-27 Heiko Schlittermann... CVE-2020-28014, CVE-2021-27216: PID file handling
2021-05-27 Heiko Schlittermann... Add priv.c: reworked version of priv dropping code
2021-05-27 Heiko Schlittermann... CVE-2020-28008: Assorted attacks in Exim's spool directory
2021-05-27 Jeremy HarrisCVE-2020-28019: Failure to reset function pointer after...
2021-05-27 Heiko Schlittermann... SECURITY: smtp_out: Leave a clean input buffer, even...
2021-05-27 Heiko Schlittermann... SECURITY: Avoid modification of constant data
2021-05-27 Heiko Schlittermann... SECURITY: Avoid memory corruption in dkim handling
2021-05-27 Heiko Schlittermann... SECURITY: Avoid decrement of dkim_collect_input if...
2021-05-27 Heiko Schlittermann... SECURITY: Check overrun rcpt_count integer
2021-05-27 Heiko Schlittermann... SECURITY: Fix safeguard against upward traversal in...
2021-05-27 Heiko Schlittermann... SECURITY: Don't miss the very last byte when reading...
2021-05-27 Heiko Schlittermann... SECURITY: off-by-one in smtp transport (read response)
2021-05-27 Phil PennockStart documenting the things we changed incompatibly.
2021-05-27 Phil PennockInline four often-called new functions
2021-05-27 Jeremy HarrisFixes for compilation
2021-05-27 Phil PennockSECURITY: rework BDAT receive function handling
2021-05-27 Phil PennockSECURITY: fix SMTP verb option parsing
2021-05-27 Phil PennockSECURITY: Avoid integer overflow on too many recipients
2021-05-27 Phil PennockSECURITY: default recipients_max to 50,000
2021-05-27 Phil PennockSECURITY: a second negative store guard
2021-05-27 Phil PennockSECURITY: refuse too small store allocations
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPZA
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-PFPSN
2021-05-27 Phil PennockSECURITY: fix Qualys CVE-2020-SLCWD
2021-05-27 Phil PennockSECURITY: pick up more argv length checks
2021-05-27 Phil PennockSECURITY: length limits on many cmdline options
2021-05-27 Phil PennockRe-ran the conversion of all DH parameters
2021-05-27 Simon Arlottgen_pkcs3: Terminate string before calling BH_hex2bn()
2021-05-27 Phil PennockDefault config: reject on too many bad RCPT
2021-05-27 Heiko Schlittermann... Handle SIGINT as we do with SIGTERM
2021-05-27 Heiko Schlittermann... Enforce pid_file_path start at "/"
2021-05-27 Heiko Schlittermann... testsuite: tidy logs/4520 and confs/4520
2021-05-27 Heiko Schlittermann... tidy
2021-05-25 Jeremy HarrisUse separate line in Received: header for timestamp
2021-05-18 u34Docs: assorted fixes
2021-05-18 Heiko Schlittermann... Docs: typo
2021-05-17 Heiko Schlittermann... Fix host_name_lookup (Close 2747)
2021-05-12 Jeremy HarrisNamed Queues: fix immediate-delivery. Bug 2743
2021-05-11 Jeremy HarrisOpenBSD: remove redundant platform define
2021-05-11 Heiko Schlittermann... TLS DANE to multiple recipients w/ different DNSSec...
2021-05-11 Heiko Schlittermann... Fix DANE + SNI handling (Bug 2265)
2021-05-08 Jeremy HarrisDNS: Better handling of SOA when negative-caching lookups
2021-05-05 Jeremy Harriswip
2021-05-04 Jeremy HarrisDebug: output dmarc library version
2021-05-04 Jeremy HarrisFix ${ipv6norm:}
2021-04-27 Heiko Schlittermann... Docs: typo. Closes 2713
2021-04-25 Jeremy Harristidying
2021-04-25 Jeremy HarrisTestsuite: tidying
2021-04-25 Jeremy HarrisTaint: enforce untainted ACL text line
2021-04-21 Simon ArlottFix time usage on non-subtick-resolution platforms
2021-04-18 Jeremy HarrisDocs: note caching of auto-generated server certificate
2021-04-18 Jeremy HarrisExperimental: ESMTP LIMITS extension
2021-04-17 Jeremy HarrisTestsuite: output changes arising
2021-04-16 Jeremy HarrisLog queue_time and queue_time_overall exclusive of...
2021-04-14 Jeremy Harris taint: allow appendfile create_file option to speci...
2021-04-12 Heiko Schlittermann... Set mainlog_name and rejectlog_name unconditionally.
2021-04-10 Jeremy HarrisLogging: better tracking of continued-connection use
2021-04-07 Jeremy HarrisPass proxy addresses/ports to continued trasnports...
2021-04-06 Jeremy HarrisDocs: add warning note on ${listnamed:} operator
2021-04-05 Heiko Schlittermann... Docs: mention *_environment in "Misc" section"
2021-04-05 Jeremy HarrisDisable server-side close timing sophistication on...
2021-04-05 Jeremy HarrisDocs: add example for DKIM dual-signing
2021-04-03 Jeremy HarrisTLS: harden error-detection in TLS proxy process
2021-04-03 Jeremy HarrisMake smtp_accept_max_per_connection expanded
2021-04-03 Heiko Schlittermann... testsuite: fix runtest (File::Copy used in another...
next