-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Format: 1.8 Date: Mon, 24 Jan 2011 19:31:06 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source i386 all Version: 4.69-9+lenny3 Distribution: stable-security Urgency: low Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dev - header files for the Exim MTA (v4) packages eximon4 - monitor application for the Exim MTA (v4) (X11 interface) Closes: 610611 Changes: exim4 (4.69-9+lenny3) stable-security; urgency=low . * 80_4.74_CVE-2011-0017.dpatch (Pulled from upstream git): Check return values of setgid/setuid. This is a privilege escalation vulnerability whereby the Exim run-time user can cause root to append content of the attacker's choosing to arbitrary files. * 80_4.74_deliverylogging.dpatch (Pulled from upstream git): If a non-debug daemon was invoked with a non-whitelisted macro, then logs from after attempting delivery would be silently lost, including for successful delivery. This log-loss bug was introduced as part of the security lockdown for fixing CVE-2010-4345. Closes: #610611 Checksums-Sha1: 60de45cda1c403d636ab751fd9af79fd807386f4 1612 exim4_4.69-9+lenny3.dsc fc393d1dd79f8d81721e975b913966ce5917b5b4 554947 exim4_4.69-9+lenny3.diff.gz 067860f1bf752ad9268c63ef65acf0993090a8d8 988608 exim4-base_4.69-9+lenny3_i386.deb 5c3bfd4841ce2f08b9278628b755a8ddafdb8755 98964 eximon4_4.69-9+lenny3_i386.deb 96700b41e99d9907024167bb7657c2f0c7a3eec5 425278 exim4-daemon-light_4.69-9+lenny3_i386.deb 22c500c5916567d2e191d8a8086b1866e234f37b 473292 exim4-daemon-heavy_4.69-9+lenny3_i386.deb 4904041d9298ded544e1fb2cb57a5624d5ad04d8 675416 exim4-daemon-light-dbg_4.69-9+lenny3_i386.deb bc1eb2a88af52099072edc68863122a87440e6dc 761558 exim4-daemon-heavy-dbg_4.69-9+lenny3_i386.deb 2a1d4af6c3105b79c7b11f5a5ec0a6c70769d4be 265146 exim4-dbg_4.69-9+lenny3_i386.deb bbb01da5d5110ec787a2d8b38a86a29cc56d6db0 71588 exim4-dev_4.69-9+lenny3_i386.deb 14209daa456e864220a288cca665eefb69c0b0c3 351558 exim4-config_4.69-9+lenny3_all.deb 3213aae7462ae7282fb8223174da8deef8b8dcb8 7474 exim4_4.69-9+lenny3_all.deb Checksums-Sha256: 7500e9d2dd653dfd1caf6590ea2343f590e7512f720a76df7f42cfd472b9b6a7 1612 exim4_4.69-9+lenny3.dsc f21e8a8ac683fa5fc63359c0083287d481c46ff3c65210473cafc3b2d0b9e2d4 554947 exim4_4.69-9+lenny3.diff.gz 7b8158e15ed64f245cf46e67c4d2a0695986af290206d5675a5992f656be3d8a 988608 exim4-base_4.69-9+lenny3_i386.deb 1c08a0f44ccf77a2e1d78aa07962dea83bb5a4acc860bd3b4297c6567f234d5c 98964 eximon4_4.69-9+lenny3_i386.deb c3f424279d56176754f2114e2eda5ad3627eaa69e8702d326ac6a8cc61cc8462 425278 exim4-daemon-light_4.69-9+lenny3_i386.deb 2e33e72e63ac62fe8a404372ab1bb0002af99112a8ca9746e91d0df421eb1c5e 473292 exim4-daemon-heavy_4.69-9+lenny3_i386.deb a70015d7801ebd181b65e4ca46d69474ee3ae7c26a20ef0f2578b0e7fa3c7a73 675416 exim4-daemon-light-dbg_4.69-9+lenny3_i386.deb fb5a7811b4247974e3e171854f67ff1cf70a8d134e02dbbaa5d9cea88ad9893a 761558 exim4-daemon-heavy-dbg_4.69-9+lenny3_i386.deb 4b85bd810995fd514c7d74c861694f1e66b8039fa62c133c37120b643217e4d7 265146 exim4-dbg_4.69-9+lenny3_i386.deb 5b56e4a35d3039ec535f887385b29d2912c8f2ba50830a5f271cc1a2ad28d2a3 71588 exim4-dev_4.69-9+lenny3_i386.deb 122a074dfe8c25e13c2c9d2d3af1eb504164938aae8365258264ce1ce2e4af19 351558 exim4-config_4.69-9+lenny3_all.deb f2f302cef7d01c6e98614a41cfa91d8fe0359a5f04d9d3b3c81f4010438a6c4a 7474 exim4_4.69-9+lenny3_all.deb Files: 1d89938c3542d9915c2b10226f040288 1612 mail standard exim4_4.69-9+lenny3.dsc 120cfa7a71e78e91ef51b1f7e089771c 554947 mail standard exim4_4.69-9+lenny3.diff.gz 629ca180a11f2bbfc7a39e985fbc8b45 988608 mail standard exim4-base_4.69-9+lenny3_i386.deb ecef2664ca9eafdb4433b7b8be04a37a 98964 mail optional eximon4_4.69-9+lenny3_i386.deb 4ae0b1890c8bad8f3d32c16eea8174d0 425278 mail standard exim4-daemon-light_4.69-9+lenny3_i386.deb ec90fef354c236cd62de8f12d6342d90 473292 mail optional exim4-daemon-heavy_4.69-9+lenny3_i386.deb 14e07834eddd53f3e7a2635e12c98da6 675416 mail extra exim4-daemon-light-dbg_4.69-9+lenny3_i386.deb 17596f9282abb7226da70476bfa1bd04 761558 mail extra exim4-daemon-heavy-dbg_4.69-9+lenny3_i386.deb 233a4b9c60882d6879818f9d44140e8a 265146 mail extra exim4-dbg_4.69-9+lenny3_i386.deb ed3a070c8b238008f0f10b662bde61ab 71588 mail extra exim4-dev_4.69-9+lenny3_i386.deb 7f79cdc90037e68f12fdaa6d169bcc52 351558 mail standard exim4-config_4.69-9+lenny3_all.deb b4de3a449189e5ff00ea019667915be7 7474 mail standard exim4_4.69-9+lenny3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEAREDAAYFAk09y30ACgkQHTOcZYuNdmNIsACgkESSaLoyc11wRwNQxHxzgOUj akwAn3WBRLAmjAQKp/WrOv5DDzYKEqWT =J4Xx -----END PGP SIGNATURE-----