-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 02 May 2026 11:33:47 +0200
Source: exim4
Binary: exim4-base exim4-base-dbgsym exim4-daemon-heavy exim4-daemon-heavy-dbgsym exim4-daemon-light exim4-daemon-light-dbgsym exim4-dev eximon4 eximon4-dbgsym
Architecture: ppc64el
Version: 4.96-15+deb12u8
Distribution: bookworm
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-01) <buildd_ppc64el-ppc64el-conova-01@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 exim4-base - support files for all Exim MTA (v4) packages
 exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac
 exim4-daemon-light - lightweight Exim MTA (v4) daemon
 exim4-dev  - header files for the Exim MTA (v4) packages
 eximon4    - monitor application for the Exim MTA (v4) (X11 interface)
Closes: 1134984
Changes:
 exim4 (4.96-15+deb12u8) bookworm; urgency=medium
 .
   * Fix GnuTLS hostname verify of a server certificate with a zero-length
     Subject. Patch from upstream GIT master (Closes: #1134984)
   * Pull CVE-fixes from 4.99.2
     +CVE-2026-40684  Possible crash with malicious DNS data when using musl
      libc On systems using musl libc (not glibc) due to an oddity in octal
      printing it is possible to crash the connection instance when malformed
      DNS data is present in PTR records.
     +CVE-2026-40685  Possible OOB read/write on corrupt JSON in header
      configurations using json operators on invalid externally-provided input
      could trigger heap corruption.
     +CVE-2026-40686  Possible OOB read with large UTF8 trailing characters
      configurations using utf8 operators on malformed utf8 in headers could
      trigger OOB reads and might trigger some data leak if error messages are
      required for subsequent emails in the current connection and similar
      malformed headers are present.
     +CVE-2026-40687  Possible OOB read/write with SPA authenticator in
      configurations using the SPA authentication driver to a
      hostile/compromised external SPA/NTLM connection it is possible to
      trigger an OOB read/write and crash the connection instance or possibly
      leak heap data to the instance.
     +As a pre-dependeny to the patchset also add the fix for upstream Bug
      3106 from 4.99.
Checksums-Sha1:
 45baee0e9e80669f4ac2f8fbf3d8653da8c3fc29 130232 exim4-base-dbgsym_4.96-15+deb12u8_ppc64el.deb
 3050cd7cdfaf1cd05d382b4da2de63ed8f2961e8 1120260 exim4-base_4.96-15+deb12u8_ppc64el.deb
 f2dc40cc165b638016ce7b714c14ae31cf655fe4 1646608 exim4-daemon-heavy-dbgsym_4.96-15+deb12u8_ppc64el.deb
 33785effdca330a676a0f125b07f9dca22dfe170 681808 exim4-daemon-heavy_4.96-15+deb12u8_ppc64el.deb
 9c1cf186cf2990253aba7800c879da15599047ef 1446084 exim4-daemon-light-dbgsym_4.96-15+deb12u8_ppc64el.deb
 9cdcd6da723e5a4898484f00de71658ddab4027d 621156 exim4-daemon-light_4.96-15+deb12u8_ppc64el.deb
 53a44ec92822501ab752eec4c838d3ad1abdc784 39116 exim4-dev_4.96-15+deb12u8_ppc64el.deb
 bb4a6dc2478017848eb2789b00027224950a2932 11363 exim4_4.96-15+deb12u8_ppc64el-buildd.buildinfo
 2b1b877ce21b7596f70243b6ca48cbe6b0ef75f9 140660 eximon4-dbgsym_4.96-15+deb12u8_ppc64el.deb
 a74ea45d739e9694f7ec93cc8c4bff972003e96c 77500 eximon4_4.96-15+deb12u8_ppc64el.deb
Checksums-Sha256:
 9d5979db61747e86c6cf7bda2747b3d8c81488b3a9ebce3616d6154623e6211f 130232 exim4-base-dbgsym_4.96-15+deb12u8_ppc64el.deb
 1eb7a25cfae8a401ff0ef022d34e54399581d35c9dd91e36a3f47a0e043ef193 1120260 exim4-base_4.96-15+deb12u8_ppc64el.deb
 3b283b05ad47ace07209476dc08d66bfc83d4d3e7e14b599935c91d43a4cebcf 1646608 exim4-daemon-heavy-dbgsym_4.96-15+deb12u8_ppc64el.deb
 188d7137a9fc66e8a4b06e5a40ef8d6b4e51a0d7e4e0c43adc6904d5f6e2b828 681808 exim4-daemon-heavy_4.96-15+deb12u8_ppc64el.deb
 7f282e19f86c42083adbd8e157e058e343f0b64624966e8f1c40e2484cc6f68b 1446084 exim4-daemon-light-dbgsym_4.96-15+deb12u8_ppc64el.deb
 38b03b32f18c99bbd1ad4a77df048aa62d67c0d9f5e9903da4b10c5c9f15c128 621156 exim4-daemon-light_4.96-15+deb12u8_ppc64el.deb
 85e8416b86be669a2dc5e582100b18a01b36ed287c468a82d2b569ae565dd432 39116 exim4-dev_4.96-15+deb12u8_ppc64el.deb
 899d6ae76c4675d903916c8d4f6b2e010cdeb72dabb34292d2da9ebdf4735864 11363 exim4_4.96-15+deb12u8_ppc64el-buildd.buildinfo
 5a8089755dd4b22b8dc1a7171996cb89a94d1779cc04c4d68c7dbefc508cedfc 140660 eximon4-dbgsym_4.96-15+deb12u8_ppc64el.deb
 7e366630387384840475e58c06d088812c5ceab75052f5ab153b6f274f51523e 77500 eximon4_4.96-15+deb12u8_ppc64el.deb
Files:
 1e72a9dff12d7a0df92825e4e296d270 130232 debug optional exim4-base-dbgsym_4.96-15+deb12u8_ppc64el.deb
 65e9083c8dbaed735d817158c225e50a 1120260 mail optional exim4-base_4.96-15+deb12u8_ppc64el.deb
 ec2d4ef2c894c0cf69a45940b722732a 1646608 debug optional exim4-daemon-heavy-dbgsym_4.96-15+deb12u8_ppc64el.deb
 5c3d45ca4eacae28cc6f91d0c51be3f2 681808 mail optional exim4-daemon-heavy_4.96-15+deb12u8_ppc64el.deb
 5ea490de28b15d2721f4f2fd76529010 1446084 debug optional exim4-daemon-light-dbgsym_4.96-15+deb12u8_ppc64el.deb
 151b06e06893b1cf8023049be1dcb367 621156 mail optional exim4-daemon-light_4.96-15+deb12u8_ppc64el.deb
 30b5de91418244c63d09fd6caaa0548e 39116 mail optional exim4-dev_4.96-15+deb12u8_ppc64el.deb
 d11bdde86000c07cd01c8799d8685709 11363 mail standard exim4_4.96-15+deb12u8_ppc64el-buildd.buildinfo
 f6f9a56628e4d0cae8e1d0306642885a 140660 debug optional eximon4-dbgsym_4.96-15+deb12u8_ppc64el.deb
 f79dc5ac5bc009afadf302188a397bca 77500 mail optional eximon4_4.96-15+deb12u8_ppc64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEDoRc43uRWMOoIqIgDNLUPhbmg7MFAmn3gzkACgkQDNLUPhbm
g7M1MA/+J3di2QQnCDUqjS0Uvv/1l2T+CVJ3tosRzgSP+4GhBddDg781UjTdHA9g
5TTclE/O3Fa2gmB+3clbnKT7AlJkhvJ3tw3YVAahU9QYwcZZdP5WYZmpbbccbd8+
C5DLPMQZXvEhDlC41HYqg2OJvsFYs96m/J7KkvjcaRGFdtPzM7LA4v1G10t4O7f3
ne6bgDHiKPFq9CYO4e5NjN5kcJ0FkLVuamPTNwHZETzNlVGuXgLta3BcKooJqOW5
J5QjE7KjMyTM5XG7ZVcBCT/WY1FfFDvlOcC7RCbrVLLfE9XS05H45Xbi3/GWTBCo
YsMCHiSgE+pUE0PMug9oXGKG+UCA1QUz2r9E0z6WcEOnSjNKpHWfe/c+iqcs8kYm
yGXiNf+gFzBc/rG8WfQWLRU0XfjH44VsTjUyKpwiZAE0SlF2uOicKTwswJPiwDQJ
HatpL1XknDugFoCFLoAPLS/44Vf0nVj+mRf1V781C1KUNwusjKucQIL2/6C6PjLO
WYe6roD9+21TorwzH53Ml5iRQ1b8Da47LhZS6QO03Nq45qX61hyUaWMV3TdWZeNh
qBW+D/oOE4KC4+8v3yxrEHYFKA6FtgzCzKWyB2+LR/J0KKuUehHCmAVPgpipJrCO
+3bBb1rvBaQvfswf28wwWVRAbL0lOCmkFxO8sGvqgcydnnyhpwc=
=Q11N
-----END PGP SIGNATURE-----