https://bugs.exim.org/show_bug.cgi?id=1834
--- Comment #4 from Jeremy Harris <[email protected]> --- From Eugene's core: smtp_setup_msg () at smtp_in.c:4591 says we're handling a VRFY command, and frame #1 tells us for "root" - so no @, and we crash because we are not cautious on deliver_split_address(). We're doing this before we get as far as discovering no handling ACL for the command. I can't see this has ever been right; it's just your bad luck (or good choice in OS) to have exposed it. The obvious patch in deliver_split_address() is simple, but leaves an empty $domain string. I can commit that right away if it passes the testsuite on my system, but I'd like tests run on the systems that exposed it before I close the bug. I _think_ just a telnet test to your standard daemon, and "VFRY root" thrown at it in the SMTP stream should be enough to expose it. Then compile from HEAD and retest. -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
