[ubuntu/questing-updates] exim4 4.98.2-1ubuntu2.1 (Accepted)

Mon May 4 12:28:37 UTC 2026

exim4 (4.98.2-1ubuntu2.1) questing-security; urgency=medium

  * SECURITY UPDATE: Multiple security issues
    - debian/patches/CVE-2026-4068x.patch: backported upstream fix.
    - CVE-2026-40685 - Possible OOB read/write on corrupt JSON in header
    - CVE-2026-40686 - Possible OOB read with large UTF8 trailing chars
    - CVE-2026-40687 - Possible OOB read/write with SPA authenticator

Date: 2026-04-29 17:52:11.232634+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/exim4/4.98.2-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.