New version (security bug fix release)

Resolves: rhbz#1314118 - Fixed local privilege escalation for set-uid root when using perl_startup Resolves: CVE-2016-1531 - Defuzzified patches
2016-03-03 15:03:36 +01:00 · 2016-03-03 15:03:36 +01:00 · 56f8aaa827
parent f8f76cd111
commit 56f8aaa827
2 changed files with 15 additions and 8 deletions
--- a/exim-4.84.2-dlopen-localscan.patch
+++ b/exim-4.84.2-dlopen-localscan.patch
@ -1,5 +1,5 @@
 diff --git a/src/EDITME b/src/EDITME
-index a3ffd48..c186529 100644
+index a3ffd48..19027ac 100644
 --- a/src/EDITME
 +++ b/src/EDITME
@@ -783,6 +783,20 @@ TLS_LIBS=-lssl -lcrypto
@ -37,7 +37,7 @@ index ba4615c..878e687 100644
 
 #define CONFIGURE_FILE
 diff --git a/src/globals.c b/src/globals.c
-index d3f9987..c01d430 100644
+index 08e6e8d..c78e731 100644
 --- a/src/globals.c
 +++ b/src/globals.c
@@ -162,6 +162,10 @@ uschar *tls_verify_certificates= NULL;
@ -52,7 +52,7 @@ index d3f9987..c01d430 100644
 /* Per Recipient Data Response variables */
 BOOL    prdr_enable            = FALSE;
 diff --git a/src/globals.h b/src/globals.h
-index 2bedcf5..6085955 100644
+index b3ad4b2..30d00f0 100644
 --- a/src/globals.h
 +++ b/src/globals.h
@@ -126,6 +126,10 @@ extern uschar *tls_verify_certificates;/* Path for certificates to check */
@ -250,10 +250,10 @@ index 3500047..8599172 100644
 +
 /* End of local_scan.c */
 diff --git a/src/readconf.c b/src/readconf.c
-index adb538c..d378b3a 100644
+index 6e33034..4688383 100644
 --- a/src/readconf.c
 +++ b/src/readconf.c
-@@ -290,6 +290,9 @@ static optionlist optionlist_config[] = {
+@@ -295,6 +295,9 @@ static optionlist optionlist_config[] = {
   { "local_from_prefix",        opt_stringptr,   &local_from_prefix },
   { "local_from_suffix",        opt_stringptr,   &local_from_suffix },
   { "local_interfaces",         opt_stringptr,   &local_interfaces },
--- a/exim.spec
+++ b/exim.spec
@ -14,8 +14,8 @@

 Summary: The exim mail transfer agent
 Name: exim
-Version: 4.84
-Release: 5%{?dist}
+Version: 4.84.2
+Release: 1%{?dist}
 License: GPLv2+
 Url: http://www.exim.org/
 Group: System Environment/Daemons
@ -58,7 +58,7 @@ Patch8: exim-4.82-libdir.patch
 Patch12: exim-4.82-cyrus.patch
 Patch13: exim-4.82-pamconfig.patch
 Patch14: exim-4.83-spamdconf.patch
-Patch18: exim-4.84-dlopen-localscan.patch
+Patch18: exim-4.84.2-dlopen-localscan.patch
 Patch19: exim-4.82-procmail.patch
 Patch20: exim-4.82-allow-filter.patch
 Patch21: exim-4.82-localhost-is-local.patch
@ -613,6 +613,13 @@ test "$1"  = 0 || %{_initrddir}/clamd.exim condrestart >/dev/null 2>&1 || :
 %{_sysconfdir}/cron.daily/greylist-tidy.sh

 %changelog
+* Thu Mar  3 2016 Jaroslav Škarvada <jskarvad@redhat.com> - 4.84.2-1
+- New version (security bug fix release)
+  Resolves: rhbz#1314118
+- Fixed local privilege escalation for set-uid root when using perl_startup
+  Resolves: CVE-2016-1531
+- Defuzzified patches
+
 * Mon Dec  7 2015 Jaroslav Škarvada <jskarvad@redhat.com> - 4.84-5
 - MIME crash fix (by mime-fix patch)
  Resolves: rhbz#1289056