If no one beats me to it, I'm going to prepare a security update with the overflow fix from 4.70: http://git.exim.org/exim.git/commitdiff/24c929a27415c7cfc7126c47e4cad39acf3efa6b What else should I include? Is there a patch for -C which has been tested in the Debian context?