Jeremy Harris | 28 Jan 22:24 2015

[Bug 68] configurable limit for time spent on spam=...

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=68

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |ASSIGNED
   Target Milestone|Exim 4.77                   |Exim 4.86+

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

qinghao tang | 28 Jan 11:22 2015
Picon

[Bug 1580] New: 【remote exec vulnerability】

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1580
           Summary: 【remote exec vulnerability】
           Product: Exim
           Version: 4.72
          Platform: Other
        OS/Version: Windows
            Status: NEW
          Severity: security
          Priority: critical
         Component: Eximon
        AssignedTo: nigel <at> exim.org
        ReportedBy: luodalongde <at> gmail.com
                CC: exim-dev <at> exim.org

Created an attachment (id=785)
 --> (http://bugs.exim.org/attachment.cgi?id=785)
conf file

this is a remote code exec vulnerability.

crash report:
Jan 29 00:55:13 localhost kernel: exim[25432]: segfault at 18 ip
00007fcb67c254fd sp 00007fff66f272b0 error 4 in
libc-2.12.so[7fcb67bad000+18a000]
Jan 29 00:58:45 localhost kernel: exim[25471]: segfault at 18 ip
00007feae99034fd sp 00007ffff8aefaf0 error 4 in
libc-2.12.so[7feae988b000+18a000]
(Continue reading)

jasen Betts | 27 Jan 14:21 2015
Picon

[Bug 508] PostgreSQL client_encoding broken

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=508

--- Comment #14 from jasen Betts <eximbugzilla <at> revmaps.no-ip.org>  2015-01-27 13:21:03 ---
(In reply to comment #13)
> I agree, documentation and examples are always helpful.  Is it currently
> possible to utilize bytea fields from exim?

The example in comment 11 is one way. AIUI Exim doesn't currently support
escaping direct to a bytea representation.

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Jeremy Harris | 28 Jan 00:01 2015

[Bug 515] spam_address enhancement

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=515

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX

--- Comment #2 from Jeremy Harris <jgh146exb <at> wizmail.org>  2015-01-27 23:01:02 ---
Nobody did

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Jeremy Harris | 27 Jan 23:36 2015

[Bug 68] configurable limit for time spent on spam=...

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=68

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jgh146exb <at> wizmail.org
         AssignedTo|tom <at> duncanthrax.net         |jgh146exb <at> wizmail.org

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Jeremy Harris | 27 Jan 23:33 2015

[Bug 392] Option not to panic when spamd/clamd is down

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=392

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |mh+exim-
                   |                            |bugzilla <at> zugschlus.de

--- Comment #4 from Jeremy Harris <jgh146exb <at> wizmail.org>  2015-01-27 22:33:52 ---
*** Bug 92 has been marked as a duplicate of this bug. ***

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Jeremy Harris | 27 Jan 23:33 2015

[Bug 92] clamav reloading virus patterns causes transient panic log entries

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=92

Nigel Metheringham <nigel <at> exim.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|Exim 4.72                   |Exim 4.73
   Target Milestone|Exim 4.73                   |Exim 4.77

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jgh146exb <at> wizmail.org
             Status|NEW                         |RESOLVED
         Resolution|                            |DUPLICATE

--- Comment #1 from Jeremy Harris <jgh146exb <at> wizmail.org>  2015-01-27 22:33:52 ---

*** This bug has been marked as a duplicate of bug 392 ***

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Casey Allen Shobe | 24 Jan 01:33 2015
Picon

[Bug 508] PostgreSQL client_encoding broken

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=508

--- Comment #13 from Casey Allen Shobe <cg <at> osss.net>  2015-01-24 00:33:51 ---
You're right about dynamically setting the encoding being a bad idea.  Sorry it
has been years since I've been intimately familiar with E-mail...

(In reply to comment #12)
> I thing the best approach is to not modify the connection, but leave it to the
> DBA to harmonise the settings. this has the potential to be a foot-gun, but it
> does allow interoperability where several databases with different server
> encodings are in use,

I agree, documentation and examples are always helpful.  Is it currently
possible to utilize bytea fields from exim?

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

jasen Betts | 24 Jan 01:02 2015
Picon

[Bug 508] PostgreSQL client_encoding broken

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=508

jasen Betts <eximbugzilla <at> revmaps.no-ip.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |eximbugzilla <at> revmaps.no-
                   |                            |ip.org
           Platform|Macintosh                   |All

--- Comment #12 from jasen Betts <eximbugzilla <at> revmaps.no-ip.org>  2015-01-24 00:01:59 ---
(In reply to comment #5)
> So I think that the best approach would be to set the client_encoding based
> upon the encoding of the E-mail being processed.  

dynamically setting the encoding is not the solution.

_emails_ don't have _an_ encoding. 

mime body parts do, and it's not unusual, for different body parts of a
multipart message to have different encodings.

And what encoding gets used in the ACLS before DATA?

Of you're storing an email body in a database you'll soon discover that you're
forced to use BYTEA because not other format works 

(Continue reading)

Jeremy Harris | 25 Jan 21:30 2015

[Bug 392] Option not to panic when spamd/clamd is down

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=392

--- Comment #3 from Jeremy Harris <jgh146exb <at> wizmail.org>  2015-01-25 20:30:36 ---
The above help the multiple-server setups (assuming you leave one server
operational at all times.  The don't help the single-server case; we'll
have to add a retry-option for that.

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Git Commit | 25 Jan 20:17 2015

[Bug 392] Option not to panic when spamd/clamd is down

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=392

--- Comment #2 from Git Commit <git <at> exim.org>  2015-01-25 19:17:11 ---
Git commit:
http://git.exim.org/exim.git/commitdiff/70817078bcd173fa33c9dabdf1e8068c901a83a1

commit 70817078bcd173fa33c9dabdf1e8068c901a83a1
Author:     Jeremy Harris <jgh146exb <at> wizmail.org>
AuthorDate: Sun Jan 25 18:48:06 2015 +0000
Commit:     Jeremy Harris <jgh146exb <at> wizmail.org>
CommitDate: Sun Jan 25 18:48:06 2015 +0000

    Do not panic-log each clamd connection fail.  Bug 392
    The panic log line for all servers failed is retained.
---
 src/src/malware.c |    3 ++-
 1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/src/src/malware.c b/src/src/malware.c
index 365ef03..43f0314 100644
--- a/src/src/malware.c
+++ b/src/src/malware.c
 <at>  <at>  -1360,7 +1360,8  <at>  <at>  if (!malware_ok)
            break;
            }

-         (void) m_errlog_defer(scanent, errstr);
(Continue reading)


Gmane