Bug#985450: buster-pu: package exim4/4.92-8+deb10u5

To: Andreas Metzler <ametzler@bebt.de>, 985450@bugs.debian.org
Subject: Bug#985450: buster-pu: package exim4/4.92-8+deb10u5
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Fri, 19 Mar 2021 19:21:24 +0000
Message-id: <[🔎] 8a277f7c599af761f7e26615717e739decf8b3a0.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 985450@bugs.debian.org
In-reply-to: <[🔎] YFNNR1Zsz5vcsejU@argenau.bebt.de>
References: <[🔎] YFNNR1Zsz5vcsejU@argenau.bebt.de> <[🔎] YFNNR1Zsz5vcsejU@argenau.bebt.de>

Control: tags -1 + confirmed

On Thu, 2021-03-18 at 13:53 +0100, Andreas Metzler wrote:
> I would like to fix two issues in buster:
> #1 Fix use of concurrent TLS connections under GnuTLS.  When a
> callout was
>    done during a receiving connection, and both used TLS, global info
> was
>    used rather than per-connection info for tracking the state of
> data
>    queued for transmission.  This could result in a connection hang.
> 
> #2 Fix issues related to certificate checking:
> a) Cherry-pick a bugfix to get proper hostname checking with CNAMES.
> Without this patch when connecting to a CNAME the server provided
> cert
> is checked against the A record instead of the original cname.
> #985243
> 
> b) Document limitation/extent of server certificate checking that is
> done by default and how to change it.  #985244 and #985344
> 

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#985450: buster-pu: package exim4/4.92-8+deb10u5
  - From: Andreas Metzler <ametzler@bebt.de>

Prev by Date: Bug#985495: marked as done (unblock: sddm/0.19.0-3)
Next by Date: Processed: Re: Bug#985450: buster-pu: package exim4/4.92-8+deb10u5
Previous by thread: Bug#985450: buster-pu: package exim4/4.92-8+deb10u5
Next by thread: Processed: Re: Bug#985450: buster-pu: package exim4/4.92-8+deb10u5
Index(es):
- Date
- Thread