Note:
This project will be discontinued after December 13, 2021. [more]
2020-05-11
Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.