Bug#1053310: exim4-base: Various severe CVE reports are outstanding
Andreas Metzler
ametzler at bebt.de
Sun Oct 1 20:29:41 BST 2023
On 2023-10-01 Andreas Metzler <ametzler at bebt.de> wrote:
> On 2023-10-01 Rainer Dorsch <ml at bokomoko.de> wrote:
[...]
> > It would help if there would be a statement by the Debian exim
> > maintainer team, by when updates are expected to arrive.
> > This would at least help to judge, if I should migrate my systems to
> > postfix or if I can wait for a bugfix.
> [...]
> Hello Rainer,
> Upstream is coordinating with various Linux distribution on the timing
> of the update. I cannot publish these confidential communications.
Tentative timeline: tomorrow (Monday).
Further details on the bugs' scope and mitigations:
https://www.openwall.com/lists/oss-security/2023/10/01/4
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the Pkg-exim4-maintainers
mailing list