ports/core (3.3): [notify] exim: temporary fix for a critical security vulnerability
commit 1e2136ea835737030293e3ca38b1e4c29a266cff Author: Juergen Daubert <jue@jue.li> Date: Sat Nov 25 11:51:32 2017 +0100 [notify] exim: temporary fix for a critical security vulnerability See https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html NOTE: ----- don't reject the appropirate change to /etc/exim/exim.conf ! diff --git a/exim/.signature b/exim/.signature index 1cdd70cb..3e35690c 100644 --- a/exim/.signature +++ b/exim/.signature @@ -1,6 +1,6 @@ untrusted comment: verify with /etc/ports/core.pub -RWRJc1FUaeVeqhIJ9mHT05pb8v8Ph3tyPQEEYeyKJsFmPASZ+cgglIWEtfC4VucLMyE1f/kWHmW2Ax25gRtj3whtsQZr9CAcogU= -SHA256 (Pkgfile) = 3fe635ae525bee4d14f83eca7f9ccbaafb4c8ffc9a9dc6d6d11a72c0b1af29a5 +RWRJc1FUaeVeqvgtMpIIkQJAlRLxq99KSRe3jxGq33jKSAylw8mu0sa1Ue0RHe6RWaRENao5Nce8qi5/D5AjLSVlYzSNvqpTbwM= +SHA256 (Pkgfile) = 798f9c95d2b1f1cb8b9b59f614cc2d0fc71687eeb7ffb13f75f6a73ad2367dd2 SHA256 (.footprint) = 3e5fe8471a7a9057c0c7486c016ea2ed1dc5ebd72adc13c23f432ef468d2fc5d SHA256 (exim-4.89.tar.xz) = 0c490a1ca97bbb22d6079d2896de19af48ac3af109ea5f307dbc6b49c66e9626 SHA256 (exim) = 850f72cb4d069dc8d15ce138623e6b6a7fe33f5daebe37fbf93c7801fa2d6134 diff --git a/exim/Pkgfile b/exim/Pkgfile index 208e07d2..8e56dbb3 100644 --- a/exim/Pkgfile +++ b/exim/Pkgfile @@ -5,7 +5,7 @@ name=exim version=4.89 -release=1 +release=2 source=(ftp://ftp.exim.org/pub/exim/exim4/$name-$version.tar.xz \ $name $name-config.patch) @@ -37,4 +37,7 @@ build() { touch $PKG/etc/ssl/certs/exim.crt touch $PKG/etc/ssl/keys/exim.key chmod 0600 $PKG/etc/ssl/{keys/exim.key,certs/exim.crt} + + # https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html + sed -e '44i\\nchunking_advertise_hosts =' -i $PKG/etc/exim/exim.conf }
On 11/25/17 3:16 PM, crux@crux.nu wrote:
commit 1e2136ea835737030293e3ca38b1e4c29a266cff Author: Juergen Daubert <jue@jue.li> Date: Sat Nov 25 11:51:32 2017 +0100
[notify] exim: temporary fix for a critical security vulnerability
See https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html
NOTE: ----- don't reject the appropirate change to /etc/exim/exim.conf !
TL;DR: Add "chunking_advertise_hosts =" without the quotes to your exim.conf and restart :-)
diff --git a/exim/.signature b/exim/.signature index 1cdd70cb..3e35690c 100644 --- a/exim/.signature +++ b/exim/.signature @@ -1,6 +1,6 @@ untrusted comment: verify with /etc/ports/core.pub -RWRJc1FUaeVeqhIJ9mHT05pb8v8Ph3tyPQEEYeyKJsFmPASZ+cgglIWEtfC4VucLMyE1f/kWHmW2Ax25gRtj3whtsQZr9CAcogU= -SHA256 (Pkgfile) = 3fe635ae525bee4d14f83eca7f9ccbaafb4c8ffc9a9dc6d6d11a72c0b1af29a5 +RWRJc1FUaeVeqvgtMpIIkQJAlRLxq99KSRe3jxGq33jKSAylw8mu0sa1Ue0RHe6RWaRENao5Nce8qi5/D5AjLSVlYzSNvqpTbwM= +SHA256 (Pkgfile) = 798f9c95d2b1f1cb8b9b59f614cc2d0fc71687eeb7ffb13f75f6a73ad2367dd2 SHA256 (.footprint) = 3e5fe8471a7a9057c0c7486c016ea2ed1dc5ebd72adc13c23f432ef468d2fc5d SHA256 (exim-4.89.tar.xz) = 0c490a1ca97bbb22d6079d2896de19af48ac3af109ea5f307dbc6b49c66e9626 SHA256 (exim) = 850f72cb4d069dc8d15ce138623e6b6a7fe33f5daebe37fbf93c7801fa2d6134 diff --git a/exim/Pkgfile b/exim/Pkgfile index 208e07d2..8e56dbb3 100644 --- a/exim/Pkgfile +++ b/exim/Pkgfile @@ -5,7 +5,7 @@
name=exim version=4.89 -release=1 +release=2 source=(ftp://ftp.exim.org/pub/exim/exim4/$name-$version.tar.xz \ $name $name-config.patch)
@@ -37,4 +37,7 @@ build() { touch $PKG/etc/ssl/certs/exim.crt touch $PKG/etc/ssl/keys/exim.key chmod 0600 $PKG/etc/ssl/{keys/exim.key,certs/exim.crt} + + # https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html + sed -e '44i\\nchunking_advertise_hosts =' -i $PKG/etc/exim/exim.conf } _______________________________________________ CRUX mailing list CRUX@lists.crux.nu https://lists.crux.nu/mailman/listinfo/crux
participants (2)
-
crux@crux.nu
-
Fredrik