[Buildroot] [PATCH] package/exim: add upstream security fix for CVE-2019-10149

Peter Korsgaard peter at korsgaard.com
Thu Jun 6 12:20:47 UTC 2019


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > A flaw was found in Exim versions 4.87 to 4.91 (inclusive).  Improper
 > validation of recipient address in deliver_message() function in
 > src/deliver.c may lead to remote command execution.

 > For more details, see the advisory:

 > https://www.exim.org/static/doc/security/CVE-2019-10149.txt

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed, thanks.

-- 
Bye, Peter Korsgaard



More information about the buildroot mailing list