Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package exim for openSUSE:Factory checked in at 2025-10-13 15:35:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/exim (Old) and /work/SRC/openSUSE:Factory/.exim.new.18484 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "exim" Mon Oct 13 15:35:49 2025 rev:88 rq:1311049 version:4.98.2 Changes: -------- --- /work/SRC/openSUSE:Factory/exim/exim.changes 2025-06-13 18:47:35.392098342 +0200 +++ /work/SRC/openSUSE:Factory/.exim.new.18484/exim.changes 2025-10-13 15:37:12.461935982 +0200 @@ -1,0 +2,5 @@ +Thu Sep 25 14:48:37 UTC 2025 - Wolfgang Engel <[email protected]> + +- Fix potential security issue with logfile rotation CVE-2025-53881 (bsc#1246457) + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ exim.spec ++++++ --- /var/tmp/diff_new_pack.zsKoeD/_old 2025-10-13 15:37:13.365973982 +0200 +++ /var/tmp/diff_new_pack.zsKoeD/_new 2025-10-13 15:37:13.369974150 +0200 @@ -1,7 +1,7 @@ # # spec file for package exim # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2025 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed ++++++ exim.logrotate ++++++ --- /var/tmp/diff_new_pack.zsKoeD/_old 2025-10-13 15:37:13.457977849 +0200 +++ /var/tmp/diff_new_pack.zsKoeD/_new 2025-10-13 15:37:13.465978185 +0200 @@ -9,21 +9,23 @@ weekly #maxage 365 prerotate - cd /var/log/exim + logdir=/var/log/exim + cd $logdir test -f /etc/sysconfig/exim && source /etc/sysconfig/exim if test "$EXIM_REPORT_WEEKLY" = yes; then day=`date +%Y%m%d` report=weekly_report-$day eximstatsdir=/srv/www/eximstats/$day - touch $report; chmod 640 $report; chown :mail $report - eximstats main.log > $report + tempdir=`mktemp -d` + touch $tempdir/$report; chmod 640 $tempdir/$report; chown :mail $tempdir/$report + eximstats main.log > $tempdir/$report if test "$EXIM_REPORT_WEEKLY_HTML" = yes; then mkdir $eximstatsdir eximstats -html -charts -chartdir $eximstatsdir main.log > $eximstatsdir/index.html fi - if ! test -e no_report_mail && test "$EXIM_REPORT_WEEKLY_SEND" = yes; then mail -s "$(sed -n '2{p;q;}' < $report) ($(hostname))" postmaster < $report; fi + if ! test -e no_report_mail && test "$EXIM_REPORT_WEEKLY_SEND" = yes; then mail -s "$(sed -n '2{p;q;}' < $tempdir/$report) ($(hostname))" postmaster < $tempdir/$report; fi if test -f $report.gz; then old $report.gz; fi - gzip -f -9 $report + gzip -f -9 $tempdir/$report && mv -n $tempdir/$report.gz $logdir/ && rmdir $tempdir fi endscript }
