exim4 - Debian Package Tracker

general

source: exim4 (main)
version: 4.97~RC1-2
maintainer: Exim4 Maintainers (archive) (DMD)
uploaders: Marc Haber [DMD] – Andreas Metzler [DMD]
arch: all any
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 4.92-8+deb10u6
o-o-sec: 4.92-8+deb10u8
o-o-bpo: 4.94.2-7~bpo10+1
oldstable: 4.94.2-7
old-sec: 4.94.2-7+deb11u1
old-bpo: 4.96-15~bpo11+1
stable: 4.96-15+deb12u1
stable-sec: 4.96-15+deb12u2
testing: 4.97~RC0-3
unstable: 4.97~RC1-2

versioned links

4.92-8+deb10u6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.92-8+deb10u8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.94.2-7~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.94.2-7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.94.2-7+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.96-15~bpo11+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.96-15+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.96-15+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.97~RC0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.97~RC1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

exim4 (65 bugs: 0, 36, 29, 0)
exim4-base (17 bugs: 1, 9, 7, 0)
exim4-config (67 bugs: 0, 27, 40, 0)
exim4-daemon-heavy (14 bugs: 0, 8, 6, 0)
exim4-daemon-light (3 bugs: 0, 2, 1, 0)
exim4-dev
eximon4

action needed

6 security issues in trixie high

There are 6 open security issues in trixie.

6 important issues:

CVE-2023-42114:
CVE-2023-42115:
CVE-2023-42116:
CVE-2023-42117:
CVE-2023-42118:
CVE-2023-42119:

Created: 2023-09-28 Last update: 2023-10-03 05:23

3 security issues in sid high

There are 3 open security issues in sid.

3 important issues:

CVE-2023-42117:
CVE-2023-42118:
CVE-2023-42119:

Created: 2023-09-28 Last update: 2023-10-03 05:23

5 security issues in buster high

There are 5 open security issues in buster.

1 important issue:

CVE-2023-42118:

4 issues postponed or untriaged:

CVE-2022-3559: (needs triaging) A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this issue. The identifier VDB-211073 was assigned to this vulnerability.
CVE-2021-38371: (needs triaging) The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.
CVE-2023-42117: (needs triaging)
CVE-2023-42119: (needs triaging)

Created: 2023-09-28 Last update: 2023-10-03 05:23

5 security issues in bullseye high

There are 5 open security issues in bullseye.

1 important issue:

CVE-2023-42118:

4 issues left for the package maintainer to handle:

CVE-2022-3559: (needs triaging) A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this issue. The identifier VDB-211073 was assigned to this vulnerability.
CVE-2021-38371: (needs triaging) The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.
CVE-2023-42117: (needs triaging)
CVE-2023-42119: (needs triaging)

You can find information about how to handle these issues in the security team's documentation.

Created: 2022-07-04 Last update: 2023-10-03 05:23

3 security issues in bookworm high

There are 3 open security issues in bookworm.

1 important issue:

CVE-2023-42118:

2 issues left for the package maintainer to handle:

CVE-2023-42117: (needs triaging)
CVE-2023-42119: (needs triaging)

You can find information about how to handle these issues in the security team's documentation.

Created: 2023-09-28 Last update: 2023-10-03 05:23

lintian reports 1 error and 5 warnings high

Lintian reports 1 error and 5 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2023-09-10 Last update: 2023-09-10 23:02

1 bug tagged help in the BTS normal

The BTS contains 1 bug tagged help, please consider helping the maintainer in dealing with it.

Created: 2019-03-21 Last update: 2023-10-04 04:01

13 bugs tagged patch in the BTS normal

The BTS contains patches fixing 13 bugs (14 if counting merged bugs), consider including or untagging them.

Created: 2023-09-13 Last update: 2023-10-04 04:01

Depends on packages which need a new maintainer normal

The packages that exim4 depends on which need a new maintainer are:

docbook-xml (#802368)
- Build-Depends: docbook-xml
docbook-xsl (#802370)
- Build-Depends: docbook-xsl

Created: 2023-09-01 Last update: 2023-10-04 03:03

debian/patches: 4 patches to forward upstream low

Among the 13 debian patches available in version 4.97~RC1-2 of the package, we noticed the following issues:

4 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-10-02 Last update: 2023-10-02 18:42

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2022-12-20 05:00

testing migrations

This package will soon be part of the auto-openldap transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
This package will soon be part of the auto-perl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Migration status for exim4 (4.97~RC0-3 to 4.97~RC1-2): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ autopkgtest for altermime/0.3.10-12: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for backuppc/4.4.0-8: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for cron/3.0pl1-175: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for cvs-mailcommit/1.19-6: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for cyrus-imapd/3.8.1-1: amd64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for diffmon/20020222-9.1: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for exim4/4.97~RC1-2: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for fwlogwatch/1.4-4: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for inn2/2.7.2~20230917-1: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for iwatch/0.2.2-10: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- ∙ ∙ autopkgtest for logcheck/1.4.3: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for mime-construct/1.12+really1.11-1: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for offlineimap3/0.0~git20230519.c9f44ad+dfsg-1: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for sbuild/0.85.2: armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for schleuder/4.0.3-9: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for swaks/20201014.0-2: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Test in progress, s390x: Pass
- ∙ ∙ autopkgtest for sxid/4.20130802-7: amd64: No test results ♻ (reference ♻), arm64: No test results ♻ (reference ♻), armel: No test results ♻ (reference ♻), armhf: No test results ♻ (reference ♻), i386: No test results ♻ (reference ♻), ppc64el: Test in progress, s390x: No test results ♻ (reference ♻)
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/e/exim4.html
- ∙ ∙ 2 days old (needed 2 days)
- Not considered

news

[rss feed]

[2023-10-02] Accepted exim4 4.92-8+deb10u8 (source) into oldoldstable (Markus Koschany)
[2023-10-02] Accepted exim4 4.96-15+deb12u2 (source) into stable-security (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2023-10-02] Accepted exim4 4.94.2-7+deb11u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2023-10-02] Accepted exim4 4.97~RC1-2 (source) into unstable (Andreas Metzler)
[2023-09-30] Accepted exim4 4.97~RC1-1 (source) into unstable (Andreas Metzler)
[2023-09-22] exim4 4.97~RC0-3 MIGRATED to testing (Debian testing watch)
[2023-09-19] Accepted exim4 4.97~RC0-3 (source) into unstable (Andreas Metzler)
[2023-09-17] exim4 4.97~RC0-2 MIGRATED to testing (Debian testing watch)
[2023-09-10] Accepted exim4 4.97~RC0-2 (source) into unstable (Andreas Metzler)
[2023-09-10] exim4 4.96-22 MIGRATED to testing (Debian testing watch)
[2023-09-09] Accepted exim4 4.97~RC0-1 (source) into experimental (Andreas Metzler)
[2023-09-02] Accepted exim4 4.96-22 (source) into unstable (Andreas Metzler)
[2023-09-02] Accepted exim4 4.96-21 (source) into unstable (Andreas Metzler)
[2023-08-17] exim4 4.96-19 MIGRATED to testing (Debian testing watch)
[2023-08-16] Accepted exim4 4.96-20 (source) into experimental (Andreas Metzler)
[2023-08-12] Accepted exim4 4.96-19 (source) into unstable (Andreas Metzler)
[2023-08-08] exim4 4.96-18 MIGRATED to testing (Debian testing watch)
[2023-08-06] Accepted exim4 4.96-18 (source) into unstable (Andreas Metzler)
[2023-08-06] exim4 4.96-17 MIGRATED to testing (Debian testing watch)
[2023-07-29] Accepted exim4 4.96-17 (source) into unstable (Andreas Metzler)
[2023-07-08] Accepted exim4 4.96-15+deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andreas Metzler)
[2023-06-17] exim4 4.96-16 MIGRATED to testing (Debian testing watch)
[2023-06-11] Accepted exim4 4.96-16 (source) into unstable (Andreas Metzler)
[2023-05-18] Accepted exim4 4.96-15~bpo11+1 (source) into bullseye-backports (Andreas Metzler)
[2023-05-18] exim4 4.96-15 MIGRATED to testing (Debian testing watch)
[2023-05-10] Accepted exim4 4.96-15 (source) into unstable (Andreas Metzler)
[2023-02-06] Accepted exim4 4.96-14~bpo11+1 (source) into bullseye-backports (Andreas Metzler)
[2023-02-06] exim4 4.96-14 MIGRATED to testing (Debian testing watch)
[2023-02-04] Accepted exim4 4.96-14 (source) into unstable (Andreas Metzler)
[2023-01-15] Accepted exim4 4.96-13~bpo11+1 (source) into bullseye-backports (Andreas Metzler)

bugs [bug history graph]

all: 167 169
RC: 1
I&N: 83 85
M&W: 83
F&P: 0
patch: 13 14
help: 1

links

homepage
lintian (1, 5)
buildd: logs, checks, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (92, -)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.96-17ubuntu1
17 bugs
patches for 4.96-17ubuntu2