pkgsrc.se | The NetBSD package collection

./mail/exim, The Exim mail transfer agent, a replacement for sendmail

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 4.98.2nb1, Package name: exim-4.98.2nb1, Maintainer: abs

Exim is a mail transport agent (MTA) developed at the University of Cambridge
for use on Unix systems connected to the Internet. It is freely available
under the terms of the GNU General Public Licence. In style it is similar to
Smail 3, but its facilities are more extensive, and in particular it has
options for verifying incoming sender and recipient addresses, for refusing
mail from specified hosts, networks, or senders, and for controlling mail
relaying.

This build of exim has the following non-default features enabled:

TRANSPORT_LMTP SUPPORT_MAILDIR SUPPORT_MAILSTORE
SUPPORT_MBX AUTH_CRAM_MD5 AUTH_PLAINTEXT
AUTH_SPA SUPPORT_TLS USE_TCP_WRAPPERS

The following default feature is disabled by default, but may be enabled by
setting the 'exim-build-eximon' option:

EXIM_MONITOR

Required to run:
[databases/db4] [lang/perl5] [devel/pcre2]

Package options: exim-appendfile-maildir, exim-appendfile-mailstore, exim-appendfile-mbx, exim-content-scan, exim-lookup-dsearch, exim-old-demime, exim-tcp-wrappers, exim-tls, inet6

Master sites: (Expand)

Filesize: 1883.809 KB

Version history: (Expand)

(2025-04-23) Updated to version: exim-4.98.2nb1
(2025-03-26) Updated to version: exim-4.98.2
(2025-02-21) Updated to version: exim-4.98.1
(2024-11-15) Updated to version: exim-4.98nb3
(2024-11-01) Updated to version: exim-4.98nb2
(2024-11-01) Updated to version: exim-4.98nb1

CVS history: (Expand)

2025-04-17 23:53:13 by Thomas Klausner | Files touched by this commit (2449)

Log message:
*: recursive bump for icu 77 and libxml2 2.14

2025-03-26 19:27:27 by David Brownlee | Files touched by this commit (2)

Log message:
Updated mail/exim to 4.98.2 - exploitable UAF

Exim version 4.98.2
-------------------

This is a security release, addressing CVE-2025-30232

JH/01 Fix use-after-free notified by Trend Micro (ref: ZDI-CAN-26250).
      Null out debug_pretrigger_buf pointer before freeing the buffer;
      the use of this buffer by the storage management checks the pointer
      for non-null before using it.

2025-02-25 19:22:23 by Nia Alarie | Files touched by this commit (4)

Log message:
exim: Delint. via drecklypkg

2025-02-21 13:21:22 by David Brownlee | Files touched by this commit (2)

Log message:
Updated mail/exim to 4.98.1

Exim version 4.98.1
-------------------

This is a security release, addressing CVE-2025-26794

JH/01 Serialization of SMTP commands is based on the MD5 sum of
      the command's argument.

HS/01 Prevent SQL injection for the hints database.

2024-11-14 23:22:33 by Thomas Klausner | Files touched by this commit (2428)

Log message:
*: recursive bump for icu 76 shlib major version bump

2024-11-01 13:55:19 by Thomas Klausner | Files touched by this commit (2425)

Log message:
*: revbump for icu downgrade

2024-11-01 01:54:33 by Thomas Klausner | Files touched by this commit (2426)

Log message:
*: recursive bump for icu 76.1 shlib bump

2024-07-12 09:04:45 by Adam Ciarcinski | Files touched by this commit (4) | Package updated

Log message:
exim exim-html: updated to 4.98

4.98
This is a security release. It addresses the SMTP smuggling attack to which SMTP \ 
servers may be vulnerable.
Exim got CVE-2023-51766 assigned for this issue.