Exim 4.92

ikkeben

Verified User
HMM 4.92 or 4.93?
options, and new features, see the NewStuff file next to this ChangeLog.


Exim version 4.93
-----------------

JH/01 OpenSSL: With debug enabled output keying information sufficient, server
side, to decode a TLS 1.3
JH/05 DKIM: ensure that dkim_domain elements are lowercased before use.
Also the key part???


This document describes *changes* to previous versions, that might
affect Exim's operation, with an unchanged configuration file. For new
options, and new features, see the NewStuff file next to this ChangeLog.
!!!!
 
Last edited:

Erulezz

Verified User
See the exim website or GitHub releases page; 4.92 is the latest stable release. 4.93 is probably the next version.
 

ju5t

Verified User
Code:
TLS error on connection from ... (SSL_accept): error:1412E0E2:SSL routines:ssl_parse_clienthello_tlsext:clienthello tlsext
It doesn't seem to be entirely broken, in this case it's a third party app that may be doing something wrong, but it is a little worrying.

edit:
As it turns out, more apps are having problems sending e-mail through our DirectAdmin servers. I will try to do some more research.
 
Last edited:

ju5t

Verified User
We have decided to downgrade all of our servers to 4.91 until we know more about this issue.
 

zEitEr

Super Moderator
The vulnerability was patched with the release of Exim 4.92, on February 10, 2019, but at the time the Exim team released v4.92, they didn't know they fixed a major security hole.

This was only recently discovered by the Qualys team while auditing older Exim versions. Now, Qualys researchers are warning Exim users to update to the 4.92 version to avoid having their servers taken over by attackers. Per the same June 2019 report on email server market share, only 4.34% of all Exim servers run the latest 4.92 release.

https://www.zdnet.com/article/new-rce-vulnerability-impacts-nearly-half-of-the-internets-email-servers/
 

smtalk

Verified User
Staff member
Code:
cd /usr/local/directadmin/custombuild
./build update
./build set exim yes
./build exim
 

floyd

Verified User
I am getting:

Trying to make exim...
/bin/sh scripts/source_checks
`Makefile' is up to date.

make[1]: Entering directory `/usr/local/directadmin/custombuild/exim-4.92/build-Linux-i386'
>>> version 4.92 #4

>>> version 4.92 #5

gcc -DMACRO_PREDEF macro_predef.c
In file included from exim.h:482,
from macro_predef.c:11:
structs.h:757: error: 'NS_MAXMSG' undeclared here (not in a function)
make[1]: *** [macro_predef.o] Error 1
make[1]: Leaving directory `/usr/local/directadmin/custombuild/exim-4.92/build-Linux-i386'
make: *** [all] Error 2

*** The make has failed, would you like to try to make again? (y,n):
 

Peter Laws

Verified User
Just updated mine, I had to downgrade to .91 when .92 was released, as there were SSL errors as post #6 states. Was this resolved?
 

floyd

Verified User
I guess the forum is not as active as it used to be.

I upgraded a server with a lot of users. I see some SSL errors but exactly the same as above. Nobody has complained yet.
 

soulshepard

Verified User
i have the same on some older servers

--make[1]: Entering directory `/usr/local/directadmin/custombuild/exim-4.92/build-Linux-i386'
>>> version 4.92 #4

>>> version 4.92 #5

gcc -DMACRO_PREDEF macro_predef.c
In file included from exim.h:482,
from macro_predef.c:11:
structs.h:757: error: 'NS_MAXMSG' undeclared here (not in a function)
make[1]: *** [macro_predef.o] Error 1
make[1]: Leaving directory `/usr/local/directadmin/custombuild/exim-4.92/build-Linux-i386'
make: *** [all] Error 2

*** The make has failed, would you like to try to make again? (y,n):
---

did anyone resolved this?
 
Top