-exim4 (4.89-2+deb9u4~hcoop9+1) unstable; urgency=medium
+exim4 (4.89-2+deb9u6~hcoop11) unstable; urgency=medium
- * Rebuild on exim 4.89
+ * New upstream security release
- -- Clinton Ebadi <clinton@unknownlamer.org> Sun, 22 Apr 2018 01:14:38 -0400
+ -- Clinton Ebadi <clinton@unknownlamer.org> Fri, 06 Sep 2019 14:23:08 -0400
+
+exim4 (4.89-2+deb9u6) stretch-security; urgency=high
+
+ * 85_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI
+ related buffer overflow. CVE-2019-15846
+
+ -- Andreas Metzler <ametzler@debian.org> Tue, 03 Sep 2019 20:01:38 +0200
+
+exim4 (4.89-2+deb9u5) stretch-security; urgency=high
+
+ * Fix remote command execution vulnerability related to
+ "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006
+
+ -- Andreas Metzler <ametzler@debian.org> Sat, 20 Jul 2019 13:32:35 +0200
+
+exim4 (4.89-2+deb9u4~hcoop10) unstable; urgency=medium
+
+ * Rebuild on 4.89-2+deb9u4
+
+ -- Clinton Ebadi <clinton@unknownlamer.org> Thu, 06 Jun 2019 19:35:28 -0400
+
+exim4 (4.89-2+deb9u4) stretch-security; urgency=high
+
+ * Non-maintainer upload by the Security Team.
+ * Fix remote command execution vulnerability (CVE-2019-10149)
+
+ -- Salvatore Bonaccorso <carnil@debian.org> Tue, 28 May 2019 22:13:55 +0200
exim4 (4.89-2+deb9u3) stretch-security; urgency=high