Bug#611572: exim4: Latest security update braks testing of user filters with exim -bf)
Stefan Fritsch
sf at sfritsch.de
Sun Jan 30 20:34:51 UTC 2011
On Sunday 30 January 2011, Stefan Fritsch wrote:
> It seems to me that either -bf should set the 'checking' var to
> true or this if block
>
> if (!unprivileged && /* originally had root
> AND */ !removed_privilege && /* still got root AND
> */ !daemon_listen && /* not starting the
> daemon */ queue_interval <= 0 && /* (either kind of
> daemon) */ ( /* AND EITHER
> */ deliver_drop_privilege || /* requested
> unprivileged */ ( /* OR
> */ queue_interval < 0 && /* not running the
> queue */ (msg_action_arg < 0 || /* and
> */ msg_action != MSG_DELIVER) && /* not delivering and
> */ (!checking || !address_test_mode) /* not address checking */
> )
> ))
> {
> exim_setugid(exim_uid, exim_gid, TRUE, US"privilege not needed");
> }
>
> should include the test 'filter_test != FTEST_NONE' in the line
> marked with 'not address checking'.
>
> But such a change should probably be sent to upstream for review.
Actually, the fix is probably this:
http://git.exim.org/exim.git/commitdiff/33191679e1a86ba6d9c38a74d0795d00c300f2c5
I will try if it helps
More information about the Pkg-exim4-maintainers
mailing list