summaryrefslogtreecommitdiff
path: root/test/stdout/0179
diff options
context:
space:
mode:
authorTodd Lyons <tlyons@exim.org>2014-05-26 12:14:16 -0700
committerTodd Lyons <tlyons@exim.org>2014-05-26 12:14:16 -0700
commit5b7a7c051c9ab9ee7c924a611f90ef2be03e0ad0 (patch)
tree18486f503facc9bf41244f63ab08da5cfb684d44 /test/stdout/0179
parent69aca2feaca1ebbc55c6f1adaee4738dc328ae90 (diff)
SECURITY: DMARC uses From header untrusted dataexim-4_82_1
CVE-2014-2957 To find the sending domain, expand_string() was used to directly parse the contents of the From header. This passes untrusted data directly into an internal function. Convert to use standard internal parsing functions.
Diffstat (limited to 'test/stdout/0179')
0 files changed, 0 insertions, 0 deletions