1 files changed, 73 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index a8c6bd8..92b0780 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,76 @@
+exim4 (4.82.1-1) unstable; urgency=high
+
+  * New upstream security release, fixing CVE-2014-2957. This is a remote
+    code execution flaw in Exim version 4.82 (only) when built with DMARC
+    support. Debian's binary packages are not built with DMARC support and
+    therefore not vulnerable. However we want to fix this for people building
+    their own binaries based on Debian's packaging.
+
+ -- Andreas Metzler <ametzler@debian.org>  Wed, 28 May 2014 19:01:43 +0200
+
+exim4 (4.82-8) unstable; urgency=medium
+
+  * Now that GMP has been relicensed to LGPLv3+/GPLv2+ build exim against
+    GnuTLS v3.
+
+ -- Andreas Metzler <ametzler@debian.org>  Sat, 12 Apr 2014 16:19:05 +0200
+
+exim4 (4.82-7) unstable; urgency=high
+
+  [ Martin Pitt ]
+  * debian/tests/control: Add missing python test dependency, as
+    debian/tests/security calls python. Closes: #740092
+
+  [ Andreas Metzler ]
+  * 4.82 deprecated $tls_bits, $tls_certificate_verified, $tls_cipher,
+    $tls_peerdn, $tls_sni and introduced tls_in_*/tls_out_* variants of these
+    variables which describe the respective status of the current incoming or
+    outgoing TLS connection. The rationale for this is that a single exim
+    process can now use both an incoming (message reception) and outgoing
+    TLS connection (callout or cutthrough delivery) concurrently. With this
+    change the "old" variables were mapped to tls_in_*, i.e. they expand to
+    empty values on outgoing connections. (This is not yet documented.)
+    Outgoing tls-connections can therefore not be detected by nonempty
+    $tls_cipher anymore. exim4-config << 4.82 used this mechanism to prevent
+    sending of plaintext AUTH information on unencrypted connections. Force a
+    lockstep upgrade of exim4-config by bumping the version of exim4-base's
+    dependency on exim4-config to >= 4.82.
+    Closes: #742901, #736081
+
+ -- Andreas Metzler <ametzler@debian.org>  Sun, 06 Apr 2014 08:32:11 +0200
+
+exim4 (4.82-6) experimental; urgency=medium
+
+  [ Martin Pitt ]
+  * debian/tests/control: Add missing python test dependency, as
+    debian/tests/security calls python. Closes: #740092
+
+  [ Andreas Metzler ]
+  * Now that GMP has been relicensed to LGPLv3+/GPLv2+ build exim against
+    GnuTLS v3.
+
+ -- Andreas Metzler <ametzler@debian.org>  Sat, 05 Apr 2014 14:18:11 +0200
+
+exim4 (4.82-5) unstable; urgency=medium
+
+  * Upgrade to libdb5.3-dev. Closes: #738637 Be paranoid and bump BDBVERSION
+    in exim4-base.postinst from 3.0 (no idea why this did not read 5.1) to
+    5.3, therefore purging hints db on upgrades.
+
+ -- Andreas Metzler <ametzler@debian.org>  Wed, 12 Feb 2014 19:31:55 +0100
+
+exim4 (4.82-4) unstable; urgency=medium
+
+  * Correct title/name of exim4-config_files(5). (Thanks, Heiko Schlittermann)
+    Closes: #734212
+  * 80_fix_ftbfs_hurd.diff by Samuel Thibault fixes FTBFS on GNU/hurd due to
+    missing support for TCLASS. Closes: #738445
+  * Add debian/upstream-signing-key.pgp (listed in
+    debian/source/include-binaries) and update watchfile to check
+    upstream signature.
+
+ -- Andreas Metzler <ametzler@debian.org>  Sun, 09 Feb 2014 19:41:34 +0100
+
 exim4 (4.82-3+dyson1) unstable; urgency=low
 
   * Package for Dyson