projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: a191492)
exim: security bump to 4.87.1
authorPeter Korsgaard <peter@korsgaard.com>
Sun, 25 Dec 2016 22:38:15 +0000 (23:38 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Tue, 27 Dec 2016 09:34:36 +0000 (10:34 +0100)
No features are added or removed. This release contains
just a fix for CVE-2016-9963

    - Fix CVE-2016-9963 - Info leak from DKIM.  When signing DKIM, if
      either LMTP or PRDR was used for delivery, the key could appear in
      logs.  Additionally, if the experimental feature "DSN_INFO" was used,
      it could appear in DSN messages (and be sent offsite).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/exim/exim.hash patch | blob | history
package/exim/exim.mk patch | blob | history

diff --git a/package/exim/exim.hash b/package/exim/exim.hash
index 83be7319886310b228587f9a5dcea582e0e2d7f5..ef2d03ba2172ae38ed200b6cf8ac84a2e4f3bea1 100644 (file)
--- a/package/exim/exim.hash
+++ b/package/exim/exim.hash
@@ -1,2 +1,2 @@
 # Locally calculated
-sha256 74691e0dff4d1b5d387e9c33c86f96a8f6d2adbc781c0dec9d2061a847b07dc9        exim-4.87.tar.bz2
+sha256 d4b7994c89240d2f9a9fcd7a2dffa4b72f14379001a24266f4dbb0fbe5131514        exim-4.87.1.tar.bz2
diff --git a/package/exim/exim.mk b/package/exim/exim.mk
index ed7d16975f2642aeed09bb1103b8fedd36fa1e37..a9f4685eb93d1f3f71c240f95cf1d0120476b012 100644 (file)
--- a/package/exim/exim.mk
+++ b/package/exim/exim.mk
@@ -4,9 +4,9 @@
 #
 ################################################################################
 
-EXIM_VERSION = 4.87
+EXIM_VERSION = 4.87.1
 EXIM_SOURCE = exim-$(EXIM_VERSION).tar.bz2
-EXIM_SITE = ftp://ftp.exim.org/pub/exim/exim4
+EXIM_SITE = ftp://ftp.exim.org/pub/exim/exim4/old
 EXIM_LICENSE = GPLv2+
 EXIM_LICENSE_FILES = LICENCE
 EXIM_DEPENDENCIES = pcre berkeleydb host-pkgconf