Merge branch 'debian'

[hcoop/debian/exim4.git] / debian / changelog

diff --git a/debian/changelog b/debian/changelog
index 6283985..0b7ede0 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,8 +1,35 @@
-exim4 (4.89-2+deb9u4~hcoop9+1) unstable; urgency=medium
+exim4 (4.89-2+deb9u6~hcoop11) unstable; urgency=medium
 
-  * Rebuild on exim 4.89
+  * New upstream security release
 
- -- Clinton Ebadi <clinton@unknownlamer.org>  Sun, 22 Apr 2018 01:14:38 -0400
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Fri, 06 Sep 2019 14:23:08 -0400
+
+exim4 (4.89-2+deb9u6) stretch-security; urgency=high
+
+  * 85_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI
+    related buffer overflow. CVE-2019-15846
+
+ -- Andreas Metzler <ametzler@debian.org>  Tue, 03 Sep 2019 20:01:38 +0200
+
+exim4 (4.89-2+deb9u5) stretch-security; urgency=high
+
+  * Fix remote command execution vulnerability related to
+    "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006
+
+ -- Andreas Metzler <ametzler@debian.org>  Sat, 20 Jul 2019 13:32:35 +0200
+
+exim4 (4.89-2+deb9u4~hcoop10) unstable; urgency=medium
+
+  * Rebuild on 4.89-2+deb9u4
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Thu, 06 Jun 2019 19:35:28 -0400
+
+exim4 (4.89-2+deb9u4) stretch-security; urgency=high
+
+  * Non-maintainer upload by the Security Team.
+  * Fix remote command execution vulnerability (CVE-2019-10149)
+
+ -- Salvatore Bonaccorso <carnil@debian.org>  Tue, 28 May 2019 22:13:55 +0200
 
 exim4 (4.89-2+deb9u3) stretch-security; urgency=high