Exim maintainers, developers, users, We have released a security release today. The latest Exim release is now 4.89.1
This release contains all fixes we did on the exim-4_89+fixes branch since the exim-4_89 release. This includes the fixes for CVE-2017-16943 and CVE-2017-16944. Tarballs are in the usual places (mirrors and http://ftp.exim.org/pub/exim/exim4/), signed with my (Heiko Schlittermann) signature. Alternatively you can use Git from git://git.exim.org/, signed tag exim-4_89_1. As an alternative to installing this release you may prefer to disable the SMTP chunking option by setting `chunking_advertise_hosts =`. This would address the issues of the last two CVEs. We expect the release of Exim 4.90 during the next weeks or so. Thank you for using Exim, for your patience and help in debugging and for your contributions. PS: Please crosscheck the signature with public keyservers or and/or https://https://ssl.schlittermann.de/keys/gpg/[email protected]/F69376CE.asc) Best regards from Dresden/Germany Viele Grüße aus Dresden Heiko Schlittermann -- SCHLITTERMANN.de ---------------------------- internet & unix support - Heiko Schlittermann, Dipl.-Ing. (TU) - {fon,fax}: +49.351.802998{1,3} - gnupg encrypted messages are welcome --------------- key ID: F69376CE - ! key id 7CBF764A and 972EAC9F are revoked since 2015-01 ------------ -
signature.asc
Description: PGP signature
-- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
