summaryrefslogtreecommitdiffstats
path: root/debian/changelog
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 05:23:55 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 05:23:55 +0000
commit321ca030e646eb3c767b63b43f21eca099040dda (patch)
treeee538f510f6245a7f8b3510b1f14d7ae38b1cc55 /debian/changelog
parentReleasing progress-linux version 4.92-8+deb10u7progress5u1. (diff)
downloadexim4-321ca030e646eb3c767b63b43f21eca099040dda.tar.xz
exim4-321ca030e646eb3c767b63b43f21eca099040dda.zip
Merging debian version 4.92-8+deb10u8.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/changelog')
-rw-r--r--debian/changelog10
1 files changed, 10 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index e8b0e26..3537358 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+exim4 (4.92-8+deb10u8) buster-security; urgency=high
+
+ * Non-maintainer upload by the LTS team.
+ * Address SPA authenticator vulnerabilities (CVE-2023-42114, CVE-2023-42116)
+ - Auths: use uschar more in spa authenticator
+ - Auths: fix possible OOB write in SPA authenticator (CVE-2023-42116)
+ - Auths: fix possible OOB read in SPA authenticator (CVE-2023-42114)
+
+ -- Markus Koschany <apo@debian.org> Mon, 02 Oct 2023 08:59:59 +0200
+
exim4 (4.92-8+deb10u7progress5u1) engywuck-security; urgency=high
* Uploading to engywuck-security, remaining changes: