-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 27 May 2026 18:58:40 +0200
Source: exim4
Binary: exim4 exim4-config
Architecture: all
Version: 4.98.2-1+deb13u3
Distribution: trixie-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 exim4      - metapackage to ease Exim MTA (v4) installation
 exim4-config - configuration for the Exim MTA (v4)
Changes:
 exim4 (4.98.2-1+deb13u3) trixie-security; urgency=high
 .
   * Cherry-pick fix for EXIM-Security-2026-05-19.1 from 4.99.4.
     Security: PROXYv2 parser: reject PROXY frames whose declared payload
     length is too short for the claimed address family (12 bytes for
     TCPv4/0x11, 36 bytes for TCPv6/0x21).  Previously a frame with
     family=0x21 and len=0 caused 16 bytes of uninitialized stack to be
     formatted as the sender's IPv6 address and disclosed in the SMTP
     greeting banner.  Affects configurations with SUPPORT_PROXY and
     `hosts_proxy` set.  Reported by Warisjeet Singh (sin99xx).
Checksums-Sha1:
 8b66079d80e949b82f3485a517d0ca6578bac5df 249848 exim4-config_4.98.2-1+deb13u3_all.deb
 810ccf692e4761a74305b278922077d307f1002c 9061 exim4_4.98.2-1+deb13u3_all-buildd.buildinfo
 e07a6595bb7b86dcc42a4bf5cfbb1b27c1411cbf 7200 exim4_4.98.2-1+deb13u3_all.deb
Checksums-Sha256:
 b6d0fc36ca01a03e792d76dfadbb6082930d595b68b07e6341b37fa08eed8b56 249848 exim4-config_4.98.2-1+deb13u3_all.deb
 8d67dd4f57b00328420268b69d10553fdfe4ee85653c0ee4bb0da5d7cf3ddd67 9061 exim4_4.98.2-1+deb13u3_all-buildd.buildinfo
 b5ddf4307f00393f9b8dc98649c31fe119c54e8f4f0672d831c144ad0a11173f 7200 exim4_4.98.2-1+deb13u3_all.deb
Files:
 32c9d42683cbe09ce125b76bce436e83 249848 mail optional exim4-config_4.98.2-1+deb13u3_all.deb
 5560d035be71b558a8a67556cc6e6977 9061 mail standard exim4_4.98.2-1+deb13u3_all-buildd.buildinfo
 826423a74c928ce0c1bd3715f9666698 7200 mail optional exim4_4.98.2-1+deb13u3_all.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE7cQ9mRD4+dWjjrb6PkCWRKsh20cFAmoYeCUACgkQPkCWRKsh
20d8Og/+JUqn84mqr8wn+852IBXPoWVsEYpSL972CCcYvHJ35/rHytqDNTXkPuhJ
V4Efir13TvPVTJt097Xs41uvKOM23f2p7JOBp9W0cc3O2stYw29m8EVQFf7rFLAQ
uPgjpFk3B/oDQ4bI9vLjrUyDJ/jnEmF2zHNIEjLkMm0fD7YWJCgR6fVgbA4+tfp9
Pxb0/wzD4QNx1bn52ySuNHLcZUAoHe/R3YQLJIYe88UwV+pWe/3nijZWpIpEy99L
uvLT6oiu6Nd2gSGzd770WMZQaV7D8DDhZ1fnzJycZBJGWO9JdsrBKSlWim/rtSaQ
UvJGX5fbtoaFtIUIUoAQq4HjZxnN0p+qohQr1irX+VCBldh0GB7wJuRCvM8p/kab
X+m4bBReYuqGjiPAufR0470HLRuU+l4fZCLIIVPD+q8kpnM6ZLvioEt1/BBBE3ww
+KDwNy2fw/RIfAmCmILLPQvbocJZowwXvaqYRAfHOe8O4KmVnfwvVVlGZUvrdD9V
cAO3COZc/Pwmail7FiKKkprSATNIFabum3xtfCzLrSagHvqeFlUF0/swGpHzrbFO
+tbWCQ8v1WS1exc7xD4gaf0z9+DDiJuO9Yj8XOTji7CUV9cHD+bxiqG+1lJNAEKU
avQ7fQnjcyXB30m4nf9AMcsapsSq8XMqAu8komrGFDYyo/9mk08=
=yDEl
-----END PGP SIGNATURE-----