[SECURITY] Fedora 29 Update: exim-4.92.3-1.fc29

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2019-d778bd4137 2019-10-09 17:21:14.595957 -------------------------------------------------------------------------------- Name : exim Product : Fedora 29 Version : 4.92.3 Release : 1.fc29 URL : http://www.exim.org/ Summary : The exim mail transfer agent Description : Exim is a message transfer agent (MTA) developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal of flexibility in the way mail can be routed, and there are extensive facilities for checking incoming mail. Exim can be installed in place of sendmail, although the configuration of exim is quite different to that of sendmail. -------------------------------------------------------------------------------- Update Information: This is an update fixing CVE-2019-16928. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 30 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92.3-1 - New version Resolves: rhbz#1756656 Resolves: CVE-2019-16928 * Fri Sep 6 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92.2-1 - New version Resolves: CVE-2019-15846 * Tue Aug 20 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92.1-1 - New version Resolves: rhbz#1742312 * Tue Mar 19 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92-5 - Processed greylist.db by cron job only if it has non zero size Resolves: rhbz#1689211 * Mon Mar 4 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92-4 - Fixed greylist-conf patch Related: rhbz#1679274 * Sat Mar 2 2019 Tim Landscheidt <tim(a)tim-landscheidt.de&gt; - 4.92-3 - Fix syntax error in exim.conf (#1679274) - Use properly compressed empty mailq.1.gz as ghost file - Add basic check that configuration file is valid * Wed Feb 20 2019 Marcel H��rry <mh+fedora(a)scrit.ch&gt; - 4.92-2 - Enable proxy and socks support Resolves: rhbz#1542870 * Mon Feb 11 2019 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 4.92-1 - New version Resolves: rhbz#1674282 * Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org&gt; - 4.91-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Mon Jan 14 2019 Bj��rn Esser <besser82(a)fedoraproject.org&gt; - 4.91-5 - Rebuilt for libcrypt.so.2 (#1666033) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1756930 - CVE-2019-16928 exim: remotely triggerable buffer overflow in string_vformat() https://bugzilla.redhat.com/show_bug.cgi?id=1756930 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-d778bd4137' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------