Earlier this month, a serious security vulnerability was discoverd in Exim. While a security update for Lenny’s version 4.69-9 was released the very same day, different versions remain vulnerable. On December 26th, version 4.72-3 was uploaded to Unstable, containing the fixes for this issue from upstream’s version 4.73 RC1.
I am sure, that this version will enter Lenny-backports when it hits Testing, but until then, a Lenny build is available from debian.dev-zero.nl. As usual, both i386 and amd64 are here.
Please note that this package was built against libdb4.8 from Lenny-backports, so you can not install this package without access to the backports repository.
Update January 7, 2011: exim4 4.72-3~bpo50+1 has entered backports.debian.org yesterday, so the exim4 packages have been removed from debian.dev-zero.nl
