From 4e1beab9c546e0e9f5a3aed1a51a8c23d25dbe61350e16d1824890ad13b7c730 Mon Sep 17 00:00:00 2001 From: Dirk Mueller Date: Thu, 25 Jul 2019 17:09:32 +0000 Subject: [PATCH] Accepting request 718574 from home:atopt:branches:server:mail - update to exim 4.92.1 * CVE-2019-13917: Fixed an issue with ${sort} expansion which could allow remote attackers to execute other programs with root privileges (boo#1142207) OBS-URL: https://build.opensuse.org/request/show/718574 OBS-URL: https://build.opensuse.org/package/show/server:mail/exim?expand=0&rev=212 --- exim-4.92.1.tar.bz2 | 3 +++ exim-4.92.1.tar.bz2.asc | 11 +++++++++++ exim-4.92.tar.bz2 | 3 --- exim-4.92.tar.bz2.asc | 11 ----------- exim.changes | 8 ++++++++ exim.spec | 2 +- 6 files changed, 23 insertions(+), 15 deletions(-) create mode 100644 exim-4.92.1.tar.bz2 create mode 100644 exim-4.92.1.tar.bz2.asc delete mode 100644 exim-4.92.tar.bz2 delete mode 100644 exim-4.92.tar.bz2.asc diff --git a/exim-4.92.1.tar.bz2 b/exim-4.92.1.tar.bz2 new file mode 100644 index 0000000..f47898b --- /dev/null +++ b/exim-4.92.1.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:b755658ab08cdabca7aaeab25f64cfe4f8d1a0e1998d9750e4bd8cff5faf5f8c +size 1927542 diff --git a/exim-4.92.1.tar.bz2.asc b/exim-4.92.1.tar.bz2.asc new file mode 100644 index 0000000..04d6d6f --- /dev/null +++ b/exim-4.92.1.tar.bz2.asc @@ -0,0 +1,11 @@ +-----BEGIN PGP SIGNATURE----- + +iQEzBAABCgAdFiEE0L/WueylaUpvFJ3Or0zGdqa2wUIFAl0wxWwACgkQr0zGdqa2 +wULwQQgAwivO0tydQLv48NmQ7uJ9Iu6/uLLTFIIuv8sRMHpdtqzv1vuQagOvjhAp +zlSLBL7C5Wovunlof2i9aZm5fvQ7MFD0mABXAkTt5bfAn1X0qgqUCc8/iWYWbGIX +58kVrOQeDPRZKf+Fsm7h/3wS5s4s1uQBjgemyjHkXxeIdb75j+5kS5TeriTxHoLg +rZvHbOoZf1LykNd0JyKahLIF8LukTZA32Jdd5P426oJ6HsT9vtTqwfSQGy2ThYqP +UKIVsny78VM05h2BelMwK44qTpWbNhAK9u58vwNMECjahGvIhIHQk4rES3nErDsf +F1qhEDC4rkoLZpungK6xbrVoyFqtWQ== +=5R4g +-----END PGP SIGNATURE----- diff --git a/exim-4.92.tar.bz2 b/exim-4.92.tar.bz2 deleted file mode 100644 index 2737858..0000000 --- a/exim-4.92.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:541fcfb3d57d51647b552a0357cde26da34c843a33647373348a27002cbefa88 -size 1924751 diff --git a/exim-4.92.tar.bz2.asc b/exim-4.92.tar.bz2.asc deleted file mode 100644 index 9338a12..0000000 --- a/exim-4.92.tar.bz2.asc +++ /dev/null @@ -1,11 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQEzBAABCgAdFiEE0L/WueylaUpvFJ3Or0zGdqa2wUIFAlxgbBoACgkQr0zGdqa2 -wUI9Lgf/ZUio9cBLImam9SlA4Drt+0P0pMcHHBWVeI+nGoMtV3XUa753Qq6nMR9W -fLLO7X4yNR4ayuCiLNRlaD0RYvsZe3bOeoyaJhPrFP6HEgY7JCjxFjD6KmbP6Nw6 -9veYcNFxgE2RfW/f9ZUlEgSPy+LKB+cQRvnYkfzBfQOuDemmguGLJnUuj4OMA3+E -H2kB0yUYUkXOaFC+dgpLaDYYQagWGL0TA9qFyV5tR2be3AAqGqhaz8fWXmE9ova4 -ddOfAbfgPBpWt2lzKjJaSHbHIIsIQHG5HzMa2WH00wEXILzF2lzigmrZnooUlbj0 -WGPTmKb2jxHSLbQyW4/l6OYu+hVXXw== -=R1Lp ------END PGP SIGNATURE----- diff --git a/exim.changes b/exim.changes index b909df0..09b872a 100644 --- a/exim.changes +++ b/exim.changes @@ -1,3 +1,11 @@ +Thu Jul 25 13:43:52 UTC 2019 - alex + +- update to exim 4.92.1 + * CVE-2019-13917: Fixed an issue with ${sort} expansion which could + allow remote attackers to execute other programs with root privileges + (boo#1142207) + +------------------------------------------------------------------- Wed Jun 5 07:14:44 CEST 2019 - wullinger@rz.uni-kiel.de - spec file cleanup diff --git a/exim.spec b/exim.spec index 2eb0e43..6bd415d 100644 --- a/exim.spec +++ b/exim.spec @@ -72,7 +72,7 @@ Requires(pre): group(mail) %endif Requires(pre): fileutils textutils %endif -Version: 4.92 +Version: 4.92.1 Release: 0 %if %{with_mysql} BuildRequires: mysql-devel