[ubuntu/eoan-proposed] exim4 4.92.1-1ubuntu1 (Accepted)

[Bryce Harrington]

exim4 (4.92.1-1ubuntu1) eoan; urgency=medium

  * Merge with Debian unstable. Remaining changes:
    - Show Ubuntu distribution in SMTP banner
      + Build-Depends on lsb-release to detect Distribution.
      + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
  * Dropped:
    - d/p/CVE-2019-13917.patch: avoid re-expansion in ${sort } in
      src/expand.c.
      [Fixed in 4.92.1]

exim4 (4.92.1-1) unstable; urgency=low

  * New upstream bugfix release. (4.92.1 is 4.92 + the fix for CVE-2019-13917,
    so there are no source changes to the previous upload.)
    + Drop 77_Avoid-re-expansion-in-sort-CVE-2019-13917-OVE-201907.patch.
    + Use patches from exim-4.92.1+fixes branch.
  * In cron.daily use '/usr/sbin/exim4 -be '${primary_hostname}' instead of
    hostname --fqdn to get local hostname (for information purposes).
    Closes: #933231
  * Run exim4-base daily job via systemd.timer to guarantee execution after
    logrotate. Closes: #932328 (Thanks to Sven Hartge for bug-report and
    patch)
  * Add systemd-sysv as alternative for fulfilling the cron dependency.
  * Use debhelper 12 compat.

exim4 (4.92-10) unstable; urgency=high

  * Fix remote command execution vulnerability related to
    "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006

exim4 (4.92-9) unstable; urgency=low

  * exim4-base.cron.daily, paniclog warning mail:
    + Improve on wording. ${E4BCD_PANICLOG_LINES} only sets an upper limit
      of reported lines, there might be less lines than that in the mail.
      Closes: #929626
    + Instead of quoting the last ${E4BCD_PANICLOG_LINES} send out the last
      lines not filtered out by "$E4BCD_PANICLOG_NOISE". Closes: #929798
  * Add missing patches from exim-4.92+fixes branch, other patches renamed for
    proper order.
    + 75_11-Fix-bP-smtp_receive_timeout-.-Bug-2384.patch
    + 75_12-Fix-build-with-recent-LibreSSL-when-including-DANE.-.patch
    + 75_13-SPF-better-buld-compatibility-with-OpenBSD.patch
    + 75_15-GnuTLS-3.6.7-cipher-strings.patch
    + 75_17-Fix-listing-a-named-queue-by-a-non-admin-user.-Bug-2.patch
    + 75_21-Unbreak-heimdal_gssapi-auth-driver.patch
    + 75_22-Fix-DSN-Final-Recipient-field.patch
    + 75_23-Fix-bounce-generation-under-RFC-3461-request.-Bug-24.patch
  * 75_20-Fix-detection-of-32b-platform-at-build-time.-Bug-240.patch is now
    also from + fixes branch.
  * Tighten dependency of exim4 on daemon packages. Closes: #930519 Add
    lintian override for version-substvar-for-external-package.

exim4 (4.92-8) unstable; urgency=low

  * Pulled from exim-4.92+fixes branch:
    + 75_11-GnuTLS-fix-tls_out_ocsp-under-hosts_request_ocsp.patch
      Fix expansion of $tls_out_ocsp under hosts_request_ocsp.
    + 75_12-GnuTLS-fix-the-advertising-of-acceptable-certs-by-th.patch
      When tls_verify_certificates was set to a directory instead of a file
      exim/GnuTLS would still send out the list of accepted certificates,
      This did not match documented behavior.
    + 75_13-Use-dsn_from-for-success-DSN-messages.-Bug-2404.patch
      The dsn_from option was not used for DSN success messages.
  * Pulled from upstream GIT master:
    + 75_14-Fix-smtp-response-timeout.patch
      Fix the timeout on smtp response to apply to the whole response instead
      of resetting for every byte received.
    + 75_15-Fix-detection-of-32b-platform-at-build-time.-Bug-240.patch
      https://bugs.exim.org/show_bug.cgi?id=2405
      ${eval } was broken on 32bit archs.

Date: Mon, 12 Aug 2019 19:18:33 -0700
Changed-By: Bryce Harrington <bryce at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/exim4/4.92.1-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 12 Aug 2019 19:18:33 -0700
Source: exim4
Architecture: source
Version: 4.92.1-1ubuntu1
Distribution: eoan
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Bryce Harrington <bryce at canonical.com>
Closes: 929626 929798 930519 932328 933231
Changes:
 exim4 (4.92.1-1ubuntu1) eoan; urgency=medium
 .
   * Merge with Debian unstable. Remaining changes:
     - Show Ubuntu distribution in SMTP banner
       + Build-Depends on lsb-release to detect Distribution.
       + d/p/fix_smtp_banner.patch: Show Ubuntu distribution in SMTP banner.
   * Dropped:
     - d/p/CVE-2019-13917.patch: avoid re-expansion in ${sort } in
       src/expand.c.
       [Fixed in 4.92.1]
 .
 exim4 (4.92.1-1) unstable; urgency=low
 .
   * New upstream bugfix release. (4.92.1 is 4.92 + the fix for CVE-2019-13917,
     so there are no source changes to the previous upload.)
     + Drop 77_Avoid-re-expansion-in-sort-CVE-2019-13917-OVE-201907.patch.
     + Use patches from exim-4.92.1+fixes branch.
   * In cron.daily use '/usr/sbin/exim4 -be '${primary_hostname}' instead of
     hostname --fqdn to get local hostname (for information purposes).
     Closes: #933231
   * Run exim4-base daily job via systemd.timer to guarantee execution after
     logrotate. Closes: #932328 (Thanks to Sven Hartge for bug-report and
     patch)
   * Add systemd-sysv as alternative for fulfilling the cron dependency.
   * Use debhelper 12 compat.
 .
 exim4 (4.92-10) unstable; urgency=high
 .
   * Fix remote command execution vulnerability related to
     "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006
 .
 exim4 (4.92-9) unstable; urgency=low
 .
   * exim4-base.cron.daily, paniclog warning mail:
     + Improve on wording. ${E4BCD_PANICLOG_LINES} only sets an upper limit
       of reported lines, there might be less lines than that in the mail.
       Closes: #929626
     + Instead of quoting the last ${E4BCD_PANICLOG_LINES} send out the last
       lines not filtered out by "$E4BCD_PANICLOG_NOISE". Closes: #929798
   * Add missing patches from exim-4.92+fixes branch, other patches renamed for
     proper order.
     + 75_11-Fix-bP-smtp_receive_timeout-.-Bug-2384.patch
     + 75_12-Fix-build-with-recent-LibreSSL-when-including-DANE.-.patch
     + 75_13-SPF-better-buld-compatibility-with-OpenBSD.patch
     + 75_15-GnuTLS-3.6.7-cipher-strings.patch
     + 75_17-Fix-listing-a-named-queue-by-a-non-admin-user.-Bug-2.patch
     + 75_21-Unbreak-heimdal_gssapi-auth-driver.patch
     + 75_22-Fix-DSN-Final-Recipient-field.patch
     + 75_23-Fix-bounce-generation-under-RFC-3461-request.-Bug-24.patch
   * 75_20-Fix-detection-of-32b-platform-at-build-time.-Bug-240.patch is now
     also from + fixes branch.
   * Tighten dependency of exim4 on daemon packages. Closes: #930519 Add
     lintian override for version-substvar-for-external-package.
 .
 exim4 (4.92-8) unstable; urgency=low
 .
   * Pulled from exim-4.92+fixes branch:
     + 75_11-GnuTLS-fix-tls_out_ocsp-under-hosts_request_ocsp.patch
       Fix expansion of $tls_out_ocsp under hosts_request_ocsp.
     + 75_12-GnuTLS-fix-the-advertising-of-acceptable-certs-by-th.patch
       When tls_verify_certificates was set to a directory instead of a file
       exim/GnuTLS would still send out the list of accepted certificates,
       This did not match documented behavior.
     + 75_13-Use-dsn_from-for-success-DSN-messages.-Bug-2404.patch
       The dsn_from option was not used for DSN success messages.
   * Pulled from upstream GIT master:
     + 75_14-Fix-smtp-response-timeout.patch
       Fix the timeout on smtp response to apply to the whole response instead
       of resetting for every byte received.
     + 75_15-Fix-detection-of-32b-platform-at-build-time.-Bug-240.patch
       https://bugs.exim.org/show_bug.cgi?id=2405
       ${eval } was broken on 32bit archs.
Checksums-Sha1:
 12f9c7e910e7a052aff54b4cfb2a41592fdbb14e 2728 exim4_4.92.1-1ubuntu1.dsc
 bab97bc923273f215d21de12c2def90d0578dc56 1767976 exim4_4.92.1.orig.tar.xz
 73268843fc62724f66a031b3672e8edf889fc258 479964 exim4_4.92.1-1ubuntu1.debian.tar.xz
 e4fb3f438ada838e4ca172cead9efd6dcd5e2468 8304 exim4_4.92.1-1ubuntu1_source.buildinfo
Checksums-Sha256:
 15690f7bb3ea007cce96265cff1d7144b3a75bd833491b79b66956cca1694c1c 2728 exim4_4.92.1-1ubuntu1.dsc
 2c64a871dd7ac464c14df8eb0dcf5cf766b46fff5af0316aaa4bf0268dde24b4 1767976 exim4_4.92.1.orig.tar.xz
 e71d1113884610ce294a229be801f04eb62091a36acaa2bb0a60e3b76ce583c0 479964 exim4_4.92.1-1ubuntu1.debian.tar.xz
 1c0ff1db5ba75c7908f55a0f748190270bd4642d182e8f2e21c8c81df08cb302 8304 exim4_4.92.1-1ubuntu1_source.buildinfo
Files:
 2184717441ff57f27de7ebf377b066d0 2728 mail standard exim4_4.92.1-1ubuntu1.dsc
 c047cb66e60557cec8f2dbc558cb5707 1767976 mail standard exim4_4.92.1.orig.tar.xz
 c691c9d3f483c7086afa22dbe26b413b 479964 mail standard exim4_4.92.1-1ubuntu1.debian.tar.xz
 2a5149c522f28e2d991c1bd08b44d5fe 8304 mail standard exim4_4.92.1-1ubuntu1_source.buildinfo
Original-Maintainer: Exim4 Maintainers <pkg-exim4-maintainers at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=aR8U
-----END PGP SIGNATURE-----