From owner-freebsd-security@freebsd.org Thu May 6 02:02:34 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1E58F62E9BC for ; Thu, 6 May 2021 02:02:34 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Received: from mail-40140.protonmail.ch (mail-40140.protonmail.ch [185.70.40.140]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "SwissSign Server Gold CA 2014 - G22" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FbH086YTDz3JGt for ; Thu, 6 May 2021 02:02:32 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Date: Thu, 06 May 2021 02:02:26 +0000 To: "freebsd-security@freebsd.org" From: Patrick Reply-To: Patrick Subject: Exim security release Message-ID: MIME-Version: 1.0 X-Spam-Status: No, score=-1.2 required=10.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM,HTML_MESSAGE shortcircuit=no autolearn=disabled version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on mailout.protonmail.ch X-Rspamd-Queue-Id: 4FbH086YTDz3JGt X-Spamd-Bar: - X-Spamd-Result: default: False [-1.47 / 15.00]; HAS_REPLYTO(0.00)[cli_junkie@protonmail.com]; FREEMAIL_FROM(0.00)[protonmail.com]; R_SPF_ALLOW(-0.20)[+ip4:185.70.40.0/24]; MIME_BASE64_TEXT_BOGUS(1.00)[]; DKIM_TRACE(0.00)[protonmail.com:+]; MIME_BASE64_TEXT(0.10)[]; DMARC_POLICY_ALLOW(-0.50)[protonmail.com,quarantine]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[protonmail.com]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[185.70.40.140:from]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-0.999]; R_DKIM_ALLOW(-0.20)[protonmail.com:s=protonmail]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; FREEMAIL_REPLYTO(0.00)[protonmail.com]; HAS_PHPMAILER_SIG(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_SPAM_SHORT(0.53)[0.528]; TO_DN_EQ_ADDR_ALL(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[185.70.40.140:from]; MAILMAN_DEST(0.00)[freebsd-security] Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.34 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 May 2021 02:02:34 -0000 SGVsbG8sIGFuZCBhcG9sb2dpZXMgaWYgdGhpcyBpcyBub3QgdGhlIHJpZ2h0IHBsYWNlIHRvIGJl IGFza2luZyB0aGlzCnF1ZXN0aW9uLgoKQSBtYWpvciBzZWN1cml0eSByZWxlYXNlIHdhcyBhbm5v dW5jZWQgeWVzdGVyZGF5IGJ5IHRoZSBFeGltIGRldiB0ZWFtClswXS4gSSBzZWUgc29tZSBMaW51 eCBkaXN0cm9zIGhhdmUgYWxyZWFkeSByZWxlYXNlZCBwYXRjaGVkIHZlcnNpb25zIG9mCkV4aW0g aW4gdGhlaXIgcGFja2FnZSByZXBvcy4gSXMgdGhlcmUgYW55IGNoYW5jZSB0aGUgRnJlZUJTRCBF eGltIHBvcnQKd2lsbCBiZSB1cGRhdGVkIHRvIHJlZmxlY3QgdGhlc2UgcGF0Y2hlcz8KClRoYW5r cywKUAoKWzBdCmh0dHBzOi8vbGlzdHMuZXhpbS5vcmcvbHVya2VyL21lc3NhZ2UvMjAyMTA1MDQu MTM0MDA3LmNlMDIyZGYzLmVuLmh0bWw= From owner-freebsd-security@freebsd.org Thu May 6 02:41:31 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2533E62FB48 for ; Thu, 6 May 2021 02:41:31 +0000 (UTC) (envelope-from gordon@tetlows.org) Received: from mail-ua1-x92f.google.com (mail-ua1-x92f.google.com [IPv6:2607:f8b0:4864:20::92f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FbHs56pdPz3Ktq for ; Thu, 6 May 2021 02:41:29 +0000 (UTC) (envelope-from gordon@tetlows.org) Received: by mail-ua1-x92f.google.com with SMTP id s2so1246422uap.1 for ; Wed, 05 May 2021 19:41:29 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=PlU2hWDokrkpgCRKtfCLmqFigE3/+XbqUU8KguP5HTY=; b=shSefe/M+/eG+xaaT84eniBf/nwJRcQy1FwpHZJK9gSNu71QR6Bvaxx8ZmNiel5J9l uIFC+aVh+rE0RxKid7jz2WanewSnemLmI2m9SIfxt/rBjZTj9WIbBadRBHqkCKV14elr 9DqANGj0g6Lq8q8SwHh7h+LTwUnXGH6sbi0bSTP0YA7HpM219CsNQ/bAwz/mkufPsGJN HYAo00Eied0bWFiPgaMP9jFAAh83VhfSuZOmWcLDWFeCpxc+s789LM+NnLwb39gO7Wyx fv9jnjjjVJZQuMt/bqv3vfVJNYARE21APMcQ4Tmr8u8u7bPtgaNSZa/q9vuencJ1LxHt RcfA== X-Gm-Message-State: AOAM531PGJbUFiFwnhpQ9Ca11amclWpiXPhjjlU2U1kgJ9lYz5N+5lJL EDpJiC0Dsk1El5bWA7li5VlgU4mTTOocHSsb6MT0 X-Google-Smtp-Source: ABdhPJzfFSWPEYageXNLGWXApYZyDWYWE9AjC1jOOw27B5QhLq7Cmya5q8KcfOhoIlGgZLIyHkT62KIEobBOxq2oW7U= X-Received: by 2002:ab0:3c8c:: with SMTP id a12mr1830442uax.28.1620268889019; Wed, 05 May 2021 19:41:29 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Gordon Tetlow Date: Wed, 5 May 2021 19:41:18 -0700 Message-ID: Subject: Re: Exim security release To: Patrick Cc: "freebsd-security@freebsd.org" , fluffy@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4FbHs56pdPz3Ktq X-Spamd-Bar: --- X-Spamd-Result: default: False [-4.00 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[tetlows.org:+]; DMARC_POLICY_ALLOW(-0.50)[tetlows.org,quarantine]; NEURAL_HAM_SHORT(-1.00)[-0.999]; FREEMAIL_TO(0.00)[protonmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::92f:from]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[tetlows.org:s=google]; FREEFALL_USER(0.00)[gordon]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::92f:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::92f:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 May 2021 02:41:31 -0000 The port maintainer (CC'd) has already included an update for the new Exim release. It should be available in the port system already. Pkg's are usually built a couple of times a week. Gordon On Wed, May 5, 2021 at 7:02 PM Patrick via freebsd-security wrote: > > Hello, and apologies if this is not the right place to be asking this > question. > > A major security release was announced yesterday by the Exim dev team > [0]. I see some Linux distros have already released patched versions of > Exim in their package repos. Is there any chance the FreeBSD Exim port > will be updated to reflect these patches? > > Thanks, > P > > [0] > https://lists.exim.org/lurker/message/20210504.134007.ce022df3.en.html > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" From owner-freebsd-security@freebsd.org Thu May 6 02:53:01 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D239562FF51 for ; Thu, 6 May 2021 02:53:01 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor.nl2k.ab.ca (doctor.nl2k.ab.ca [204.209.81.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4FbJ6N5xWTz3L7b for ; Thu, 6 May 2021 02:53:00 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.94.2 (FreeBSD)) (envelope-from ) id 1leTua-000EHh-IC; Wed, 05 May 2021 20:38:48 -0600 Date: Wed, 5 May 2021 20:38:48 -0600 From: The Doctor To: Patrick Cc: "freebsd-security@freebsd.org" Subject: Re: Exim security release Message-ID: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Rspamd-Queue-Id: 4FbJ6N5xWTz3L7b X-Spamd-Bar: +++++ X-Spamd-Result: default: False [5.97 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(0.00)[+a:c]; NEURAL_HAM_SHORT(-0.03)[-0.027]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(0.00)[nl2k.ab.ca,quarantine]; FREEMAIL_TO(0.00)[protonmail.com]; FROM_EQ_ENVFROM(0.00)[]; INTRODUCTION(2.00)[]; R_DKIM_NA(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[204.209.81.1:from]; MID_RHS_MATCH_FROM(0.00)[]; ASN(0.00)[asn:6171, ipnet:204.209.81.0/24, country:CA]; ARC_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; FROM_HAS_DN(0.00)[]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; NEURAL_SPAM_MEDIUM(1.00)[1.000]; BAD_REP_POLICIES(0.10)[]; SPAMHAUS_ZRD(0.00)[204.209.81.1:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RBL_VIRUSFREE_BOTNET(2.00)[204.209.81.1:from]; NEURAL_SPAM_LONG(1.00)[1.000]; RCVD_COUNT_TWO(0.00)[2]; GREYLIST(0.00)[pass,body]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 May 2021 02:53:01 -0000 On Thu, May 06, 2021 at 02:02:26AM +0000, Patrick via freebsd-security wrote: > Hello, and apologies if this is not the right place to be asking this > question. > > A major security release was announced yesterday by the Exim dev team > [0]. I see some Linux distros have already released patched versions of > Exim in their package repos. Is there any chance the FreeBSD Exim port > will be updated to reflect these patches? > > Thanks, > P > I saw a git update today. > [0] > https://lists.exim.org/lurker/message/20210504.134007.ce022df3.en.html > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" -- Member - Liberal International This is doctor@@nl2k.ab.ca Ici doctor@@nl2k.ab.ca Yahweh, Queen & country!Never Satan President Republic!Beware AntiChrist rising! Look at Psalms 14 and 53 on Atheism https://www.empire.kred/ROOTNK?t=94a1f39b The liar is always being persecuted. -unknown From owner-freebsd-security@freebsd.org Fri May 7 15:41:59 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 056F0632E54 for ; Fri, 7 May 2021 15:41:59 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Received: from mail-40141.protonmail.ch (mail-40141.protonmail.ch [185.70.40.141]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "SwissSign Server Gold CA 2014 - G22" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FcF794FP7z4mQW for ; Fri, 7 May 2021 15:41:57 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Date: Fri, 07 May 2021 15:41:50 +0000 To: Gordon Tetlow From: P Cc: "freebsd-security@freebsd.org" , "fluffy@freebsd.org" Reply-To: P Subject: Re: Exim security release Message-ID: In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-1.2 required=10.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM shortcircuit=no autolearn=disabled version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on mailout.protonmail.ch X-Rspamd-Queue-Id: 4FcF794FP7z4mQW X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.21 / 15.00]; HAS_REPLYTO(0.00)[cli_junkie@protonmail.com]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[protonmail.com]; R_SPF_ALLOW(-0.20)[+ip4:185.70.40.0/24]; DKIM_TRACE(0.00)[protonmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[protonmail.com,quarantine]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[protonmail.com]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[185.70.40.141:from]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[protonmail.com:s=protonmail]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.89)[0.891]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; FREEMAIL_REPLYTO(0.00)[protonmail.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[185.70.40.141:from]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 May 2021 15:41:59 -0000 =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90 Original Me= ssage =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90 On Thursday, May 6, 2021 2:41 AM, Gordon Tetlow wrote: > The port maintainer (CC'd) has already included an update for the new > Exim release. It should be available in the port system already. Pkg's > are usually built a couple of times a week. > > Gordon Thank you for taking the time to reply, and apologies for my delay in getting back to this. I was looking here [0] and saw the last activity still points to the +fixes branch of November 2020, which is what prompted my question. If you don't mind, where did you see the included update so I know where to look the next time. I also did pkg update yesterday, including exim-postgresql. exim -bV now shows v4.94.2 which seems to match the patched version from the Exim mailing list. But not sure how to confirm that either. Appreciate the help! P [0] https://svnweb.FreeBSD.org/ports/head/mail/exim > > On Wed, May 5, 2021 at 7:02 PM Patrick via freebsd-security > freebsd-security@freebsd.org wrote: > > > Hello, and apologies if this is not the right place to be asking this > > question. > > A major security release was announced yesterday by the Exim dev team > > [0]. I see some Linux distros have already released patched versions of > > Exim in their package repos. Is there any chance the FreeBSD Exim port > > will be updated to reflect these patches? > > Thanks, > > P > > [0] > > https://lists.exim.org/lurker/message/20210504.134007.ce022df3.en.html > > > > freebsd-security@freebsd.org mailing list > > https://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.= org" From owner-freebsd-security@freebsd.org Fri May 7 15:49:26 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A723B63331D for ; Fri, 7 May 2021 15:49:26 +0000 (UTC) (envelope-from vince@unsane.co.uk) Received: from unsane.co.uk (tunnel7249-pt.tunnel.tserv5.lon1.ipv6.he.net [IPv6:2001:470:1f08:110::2]) by mx1.freebsd.org (Postfix) with ESMTP id 4FcFHm5VShz4mSW for ; Fri, 7 May 2021 15:49:24 +0000 (UTC) (envelope-from vince@unsane.co.uk) Received: from MacBook-Air.local (vhoffman.plus.com [81.174.148.213]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by unsane.co.uk (Postfix) with ESMTPSA id DCE4930013 for ; Fri, 7 May 2021 16:49:17 +0100 (BST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=unsane.co.uk; s=251017; t=1620402558; bh=PXU/kYdwXwWiHVXzoZ4igI1RLJ1fcJ9wrofOJVwQ8oM=; h=Subject:To:References:From:Date:In-Reply-To; b=nLxkC/x9MRjtbQU594/goYj3+JDD4avur13e0NvFY1JXIM1eIczNyoMhzh6AzY2Xg XAjd69p4wuLquo7vT0cw4/c25A4d7M/0IvahdAz+/rJxRZKuI7ecr3NNUlznDEgHyX QynZfmwPxctB5bEt5EsvaUR5FW7UPzLRPjHRkjqc= Subject: Re: Exim security release To: freebsd-security@freebsd.org References: From: Vincent Hoffman-Kazlauskas Message-ID: <65808f91-fbf7-ec98-64d9-b9405bf943b0@unsane.co.uk> Date: Fri, 7 May 2021 16:49:17 +0100 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:78.0) Gecko/20100101 Thunderbird/78.10.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4FcFHm5VShz4mSW X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=pass header.d=unsane.co.uk header.s=251017 header.b=nLxkC/x9; dmarc=pass (policy=none) header.from=unsane.co.uk; spf=fail (mx1.freebsd.org: domain of vince@unsane.co.uk does not designate 2001:470:1f08:110::2 as permitted sender) smtp.mailfrom=vince@unsane.co.uk X-Spamd-Result: default: False [0.80 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_NONE(0.00)[]; DKIM_TRACE(0.00)[unsane.co.uk:+]; DMARC_POLICY_ALLOW(0.00)[unsane.co.uk,none]; NEURAL_HAM_SHORT(-1.00)[-0.999]; DMARC_POLICY_ALLOW_WITH_FAILURES(-0.50)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RBL_DBL_DONT_QUERY_IPS(0.00)[2001:470:1f08:110::2:from]; ASN(0.00)[asn:6939, ipnet:2001:470::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[]; R_SPF_FAIL(1.00)[-all]; R_DKIM_ALLOW(-0.20)[unsane.co.uk:s=251017]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; SPAMHAUS_ZRD(0.00)[2001:470:1f08:110::2:from:127.0.2.255]; VIOLATED_DIRECT_SPF(3.50)[]; RCVD_COUNT_TWO(0.00)[2]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 May 2021 15:49:26 -0000 On 07/05/2021 16:41, P via freebsd-security wrote: > ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ > On Thursday, May 6, 2021 2:41 AM, Gordon Tetlow wrote: > >> The port maintainer (CC'd) has already included an update for the new >> Exim release. It should be available in the port system already. Pkg's >> are usually built a couple of times a week. >> >> Gordon > > Thank you for taking the time to reply, and apologies for my delay in > getting back to this. > > I was looking here [0] and saw the last activity still points to the > +fixes branch of November 2020, which is what prompted my question. If > you don't mind, where did you see the included update so I know where > to look the next time. > > I also did pkg update yesterday, including exim-postgresql. exim -bV > now shows v4.94.2 which seems to match the patched version from the > Exim mailing list. But not sure how to confirm that either. I may be wrong but I suspect https://svnweb.FreeBSD.org isnt valid any more since the move to git. https://cgit.freebsd.org/ports/log/mail/exim/Makefile shows 'update to 4.94.2 security release' 3 days ago. Vince > > Appreciate the help! > P > > [0] > https://svnweb.FreeBSD.org/ports/head/mail/exim > >> >> On Wed, May 5, 2021 at 7:02 PM Patrick via freebsd-security >> freebsd-security@freebsd.org wrote: >> >>> Hello, and apologies if this is not the right place to be asking this >>> question. >>> A major security release was announced yesterday by the Exim dev team >>> [0]. I see some Linux distros have already released patched versions of >>> Exim in their package repos. Is there any chance the FreeBSD Exim port >>> will be updated to reflect these patches? >>> Thanks, >>> P >>> [0] >>> https://lists.exim.org/lurker/message/20210504.134007.ce022df3.en.html >>> >>> freebsd-security@freebsd.org mailing list >>> https://lists.freebsd.org/mailman/listinfo/freebsd-security >>> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > > > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > From owner-freebsd-security@freebsd.org Fri May 7 19:28:04 2021 Return-Path: Delivered-To: freebsd-security@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DE5F2639BA0 for ; Fri, 7 May 2021 19:28:04 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Received: from mail-40140.protonmail.ch (mail-40140.protonmail.ch [185.70.40.140]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "SwissSign Server Gold CA 2014 - G22" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FcL833sQJz3GWj for ; Fri, 7 May 2021 19:28:02 +0000 (UTC) (envelope-from cli_junkie@protonmail.com) Date: Fri, 07 May 2021 19:27:53 +0000 To: Vincent Hoffman-Kazlauskas From: Patrick Cc: "freebsd-security@freebsd.org" Reply-To: Patrick Subject: Re: Exim security release Message-ID: In-Reply-To: <65808f91-fbf7-ec98-64d9-b9405bf943b0@unsane.co.uk> References: <65808f91-fbf7-ec98-64d9-b9405bf943b0@unsane.co.uk> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-1.2 required=10.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM shortcircuit=no autolearn=disabled version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on mailout.protonmail.ch X-Rspamd-Queue-Id: 4FcL833sQJz3GWj X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.28 / 15.00]; HAS_REPLYTO(0.00)[cli_junkie@protonmail.com]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[protonmail.com]; R_SPF_ALLOW(-0.20)[+ip4:185.70.40.0/24]; DKIM_TRACE(0.00)[protonmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[protonmail.com,quarantine]; NEURAL_HAM_SHORT(-0.18)[-0.182]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[protonmail.com]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[185.70.40.140:from]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[protonmail.com:s=protonmail]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; FREEMAIL_REPLYTO(0.00)[protonmail.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[185.70.40.140:from]; MAILMAN_DEST(0.00)[freebsd-security] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 May 2021 19:28:04 -0000 =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90 Original Me= ssage =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90 On Friday, May 7, 2021 3:49 PM, Vincent Hoffman-Kazlauskas wrote: > > > On 07/05/2021 16:41, P via freebsd-security wrote: > > > =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90 Origina= l Message =E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80=90=E2=80= =90 > > On Thursday, May 6, 2021 2:41 AM, Gordon Tetlow gordon@tetlows.org wrot= e: > > > > > The port maintainer (CC'd) has already included an update for the new > > > Exim release. It should be available in the port system already. Pkg'= s > > > are usually built a couple of times a week. > > > Gordon > > > > Thank you for taking the time to reply, and apologies for my delay in > > getting back to this. > > I was looking here [0] and saw the last activity still points to the > > +fixes branch of November 2020, which is what prompted my question. If > > you don't mind, where did you see the included update so I know where > > to look the next time. > > I also did pkg update yesterday, including exim-postgresql. exim -bV > > now shows v4.94.2 which seems to match the patched version from the > > Exim mailing list. But not sure how to confirm that either. > > I may be wrong but I suspecthttps://svnweb.FreeBSD.org isnt valid any > more since the move to git. > > https://cgit.freebsd.org/ports/log/mail/exim/Makefile > shows 'update to 4.94.2 security release' 3 days ago. > > Vince Now that makes perfect sense, but I didn't know about https://cgit.freebsd.org/ports/tree/mail/exim I got to the SVN repo by starting at https://www.freebsd.org, clicking the Ports link under Shortcuts, and searching for exim. Up until I submitted my reply this morning, that took me to the SVN repo. I did verify that before replying. But now it goes to the cgit page. :) So it looks like all is good. Thanks everyone! P > > > Appreciate the help! > > P > > [0] > > https://svnweb.FreeBSD.org/ports/head/mail/exim > > > > > On Wed, May 5, 2021 at 7:02 PM Patrick via freebsd-security > > > freebsd-security@freebsd.org wrote: > > > > > > > Hello, and apologies if this is not the right place to be asking th= is > > > > question. > > > > A major security release was announced yesterday by the Exim dev te= am > > > > [0]. I see some Linux distros have already released patched version= s of > > > > Exim in their package repos. Is there any chance the FreeBSD Exim p= ort > > > > will be updated to reflect these patches? > > > > Thanks, > > > > P > > > > [0] > > > > https://lists.exim.org/lurker/message/20210504.134007.ce022df3.en.h= tml > > > > freebsd-security@freebsd.org mailing list > > > > https://lists.freebsd.org/mailman/listinfo/freebsd-security > > > > To unsubscribe, send any mail to "freebsd-security-unsubscribe@free= bsd.org" > > > > freebsd-security@freebsd.org mailing list > > https://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.= org" > > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.or= g"