- src/smtp_in.c: applied upstream patch to fix buffer overflow; this is

  potentially a security problem
  This is CAN-2003-0698. For more information see this mailing list posting:
  http://www.exim.org/pipermail/exim-users/Week-of-Mon-20030811/057809.html

Changed files:
    exim-smtp_in.patch -> 1.1.2.1

diff --git a/exim-smtp_in.patch b/exim-smtp_in.patch
new file mode 100644 (file)
index 0000000..e0767c3
--- /dev/null
+++ b/exim-smtp_in.patch
@@ -0,0 +1,20 @@
+--- exim-3.36.orig/src/smtp_in.c
++++ exim-3.36/src/smtp_in.c
+@@ -2021,13 +2021,12 @@
+ 
+     if (!check_helo(smtp_data))
+       {
+-      char *s;
+-      smtp_printf("501 syntactically invalid %s argument(s)\r\n", hello);
+-      if (*smtp_data == 0) strcpy(smtp_data, "(no argument given)");
+-      s = string_printing(smtp_data);
++      smtp_printf("501 Syntactically invalid %s argument(s)\r\n", hello);
+       log_write(0, LOG_MAIN|LOG_REJECT, "rejected %s from %s: syntactically "
+         "invalid argument(s): %s", hello,
+-        (sender_fullhost == NULL)? "local process" : sender_fullhost, s);
++        (sender_fullhost == NULL)? "local process" : sender_fullhost,
++        (*smtp_data == 0)? "(no argument given)" :
++                           string_printing(smtp_data));
+       break;
+       }
+