index
:
delta/exim4.git
4.next
DEVEL_PDKIM
EXISCAN
abandoned_first_rel_4_89
add-xfpt
bug/2390-tmpfile-race
bug_1141
bugfix
dane_require_tls_ciphers
dnssec
doc_hacking
dubious
enable_ecdhe
epub
exim-4.92+fixes
exim-4.92+security
exim-4.92.1+fixes
exim-4.92.2+fixes
exim-4.92.3+fixes
exim-4.93+fixes
exim-4.94+fixes
exim-4.94.2+fixes
exim-4.94.2+taintwarn
exim-4.95+fixes
exim-4_80_1+CVE-2016-1531
exim-4_80_1+CVE-2016-9963
exim-4_80_security
exim-4_82_1+CVE-2016-1531
exim-4_84+CVE-2016-1531
exim-4_84_2+CVE-2016-9963
exim-4_84_2+fixes
exim-4_85+CVE-2016-1531
exim-4_86+CVE-2016-1531
exim-4_86+fixes
exim-4_86_2+CVE-2016-9963
exim-4_86_2+fixes
exim-4_87+CVE-2016-9963
exim-4_89+fixes
exim-4_90+fixes
exim-4_91+fixes
fix-CVE-2016-1531
fix_old_acknowledgement
fix_receive_bombout
hs/systemd-units
hs/taintwarn
ifdef_smarthost
master
ocsp_staple_rollup
old_master
pdp/regen-dh-c
pdp_new_dhparam
pdp_openssl_102_min
pdpreview
release_4_89
release_4_89_redux
rfc4648
testsuite_delays
tls_fix
tom_dev
wip/doc/mysql-ssl
git.exim.org: exim.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
Commit message (
Expand
)
Author
Age
Files
Lines
*
Avoid using CLOCK_MONOTONIC for $received_time. Bug 2615
exim-4.94.2+fixes
Jeremy Harris
2021-09-02
1
-4
/
+11
*
DKIM: fix verify under TLS & chunking, with pipelined next command
Jeremy Harris
2021-08-11
8
-9
/
+23
*
Testsuite: testcases for DKIM under TLS
Jeremy Harris
2021-08-11
69
-1
/
+9262
*
Testsuite: testcase shuffling
Jeremy Harris
2021-08-11
48
-6
/
+178
*
Fix tainted message for fakereject
Jeremy Harris
2021-07-10
2
-1
/
+7
*
Fix host_name_lookup (Close 2747)
Heiko Schlittermann (HS12-RIPE)
2021-05-16
1
-2
/
+2
*
Merge branch 'exim-4.94+fixes' into exim-4.94.2+fixes
Heiko Schlittermann (HS12-RIPE)
2021-05-13
5
-2
/
+21
|
\
|
*
Named Queues: fix immediate-delivery. Bug 2743
Jeremy Harris
2021-05-12
5
-2
/
+21
*
|
Merge branch 'exim-4.94+fixes' into exim-4.94.2+fixes
Heiko Schlittermann (HS12-RIPE)
2021-05-09
4
-4
/
+7
|
\
\
|
|
/
|
*
Merge branch 'exim-4.94+fixes' of ssh://git.exim.org/home/git/exim into exim-...
Heiko Schlittermann (HS12-RIPE)
2021-05-09
4
-4
/
+7
|
|
\
|
|
*
Fix ${ipv6norm:}
Jeremy Harris
2021-05-04
4
-4
/
+7
*
|
|
Fix DANE + SNI handling (Bug 2265)
Heiko Schlittermann (HS12-RIPE)
2021-05-03
1
-2
/
+2
*
|
|
Fix BDAT issue for body w/o trailing CRLF (again Bug 1974)
exim-4.94.2
Heiko Schlittermann (HS12-RIPE)
2021-04-30
1
-2
/
+3
*
|
|
testsuite: reproduce BDAT with missing eol (Bug 1974)
Heiko Schlittermann (HS12-RIPE)
2021-04-30
3
-10
/
+73
|
/
/
*
|
Cleanup docs on cve-2020-qualys, point to the Exim website
exim-4.94.1
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-0
/
+2
*
|
rewrite: revert to unchecked result of parse_extract_address()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+17
*
|
Honour the outcome of parse_extract_address(), testsuite 471
Heiko Schlittermann (HS12-RIPE)
2021-04-28
6
-16
/
+111
*
|
CVE-2020-28023: Out-of-bounds read in smtp_setup_msg()
Qualys Security Advisory
2021-04-28
3
-3
/
+5
*
|
Remove merge artifact
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+0
*
|
Update upgrade notes and source about use of seteuid()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
2
-10
/
+14
*
|
CVE-2020-28007: Link attack in Exim's log directory
Qualys Security Advisory
2021-04-28
5
-182
/
+234
*
|
CVE-2020-28016: Heap out-of-bounds write in parse_fix_phrase()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-3
/
+3
*
|
SECURITY: Avoid modification of constant data in dkim handling
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-5
/
+5
*
|
SECURITY: Leave a clean smtp_out input buffer even in case of read error
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+2
*
|
SECURITY: Always exit when LOG_PANIC_DIE is set
Qualys Security Advisory
2021-04-28
2
-0
/
+5
*
|
CVE-2020-28012: Missing close-on-exec flag for privileged pipe
Qualys Security Advisory
2021-04-28
2
-0
/
+8
*
|
CVE-2020-28024: Heap buffer underflow in smtp_ungetc()
Qualys Security Advisory
2021-04-28
2
-0
/
+6
*
|
CVE-2020-28009: Integer overflow in get_stdinput()
Qualys Security Advisory
2021-04-28
1
-1
/
+18
*
|
CVE-2020-28015+28021: New-line injection into spool header file
Qualys Security Advisory
2021-04-28
1
-5
/
+18
*
|
CVE-2020-28026: Line truncation and injection in spool_read_header()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-16
/
+32
*
|
CVE-2020-28022: Heap out-of-bounds read and write in extract_option()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-9
/
+14
*
|
CVE-2020-28017: Integer overflow in receive_add_recipient()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-6
/
+6
*
|
SECURITY: Refuse negative and large store allocations
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-6
/
+12
*
|
CVE-2020-28013: Heap buffer overflow in parse_fix_phrase()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-6
/
+1
*
|
CVE-2020-28011: Heap buffer overflow in queue_run()
Qualys Security Advisory
2021-04-28
1
-4
/
+10
*
|
CVE-2020-28010: Heap out-of-bounds write in main()
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-6
/
+3
*
|
CVE-2020-28018: Use-after-free in tls-openssl.c
Qualys Security Advisory
2021-04-28
1
-4
/
+0
*
|
CVE-2020-28025: Heap out-of-bounds read in pdkim_finish_bodyhash()
Qualys Security Advisory
2021-04-28
1
-1
/
+1
*
|
CVE-2020-28014, CVE-2021-27216: PID file handling
Heiko Schlittermann (HS12-RIPE)
2021-04-28
4
-43
/
+149
*
|
Add priv.c: reworked version of priv dropping code
Heiko Schlittermann (HS12-RIPE)
2021-04-28
14
-73
/
+81
*
|
CVE-2020-28008: Assorted attacks in Exim's spool directory
Heiko Schlittermann (HS12-RIPE)
2021-04-28
11
-57
/
+77
*
|
CVE-2020-28019: Failure to reset function pointer after BDAT error
Jeremy Harris
2021-04-28
1
-1
/
+14
*
|
SECURITY: smtp_out: Leave a clean input buffer, even in case of read error
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-2
/
+3
*
|
SECURITY: Avoid modification of constant data
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-8
/
+9
*
|
SECURITY: Avoid memory corruption in dkim handling
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-6
/
+8
*
|
SECURITY: Avoid decrement of dkim_collect_input if already at 0
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+1
*
|
SECURITY: Check overrun rcpt_count integer
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+5
*
|
SECURITY: Fix safeguard against upward traversal in msglog files.
Heiko Schlittermann (HS12-RIPE)
2021-04-28
2
-1
/
+3
*
|
SECURITY: Don't miss the very last byte when reading long lines from -H
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-1
/
+1
*
|
SECURITY: off-by-one in smtp transport (read response)
Heiko Schlittermann (HS12-RIPE)
2021-04-28
1
-2
/
+2
[next]