projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1272878) | patch
package/exim: add upstream security fix for CVE-2019-10149
authorPeter Korsgaard <peter@korsgaard.com>
Wed, 5 Jun 2019 16:28:05 +0000 (18:28 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Thu, 6 Jun 2019 12:20:35 +0000 (14:20 +0200)
commit83967ef53d78422c5a9e1a9fb4771a8e87d40e2a
tree7ad8378e09493c8209cd5355368ad9007be1ade3tree
parent1272878fd087b52b313e1e30d075574ae5265030commit | diff
package/exim: add upstream security fix for CVE-2019-10149

A flaw was found in Exim versions 4.87 to 4.91 (inclusive).  Improper
validation of recipient address in deliver_message() function in
src/deliver.c may lead to remote command execution.

For more details, see the advisory:

https://www.exim.org/static/doc/security/CVE-2019-10149.txt

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/exim/0007-Fix-CVE-2019-10149.patch [new file with mode: 0644] blob