Accepting request 802873 from home:pwcau:branches:server:mail
- bring changes from current in +fixes branch
(patch-exim-fixes-ee83de04d3087efaf808d1f2235a988275c2ee94)
* fixes CVE-2020-12783 (bsc#1171490)
* Regard command-line recipients as tainted.
* Bug 2489: Fix crash in the "pam" expansion condition.
* Use tainted buffers for the transport smtp context.
* Bug 2493: Harden ARC verify against Outlook, which has been seen to mix
the ordering of its ARC headers. This caused a crash.
* Bug 2492: Use tainted memory for retry record when needed. Previously when
a new record was being constructed with information from the peer, a trap
was taken.
* Bug 2494: Unset the default for dmarc_tld_file.
* Fix an uninitialised flag in early-pipelining. Previously connections
could, depending on the platform, hang at the STARTTLS response.
* Bug 2498: Reset a counter used for ARC verify before handling another
message on a connection. Previously if one message had ARC headers and
the following one did not, a crash could result when adding an
Authentication-Results: header.
* Bug 2500: Rewind some of the common-coding in string handling between the
Exim main code and Exim-related utities.
* Fix the variables set by the gsasl authenticator.
* Bug 2507: Modules: on handling a dynamic-module (lookups) open failure,
only retrieve the errormessage once.
* Bug 2501: Fix init call in the heimdal authenticator. Previously it
adjusted the size of a major service buffer; this failed because the
buffer was in use at the time. Change to a compile-time increase in the
buffer size, when this authenticator is compiled into exim.
OBS-URL: https://build.opensuse.org/request/show/802873
OBS-URL: https://build.opensuse.org/package/show/server:mail/exim?expand=0&rev=234
This commit is contained in:
Peter Wullinger
Git OBS Bridge
parent
b53573fcd2
commit
c7d2171b05
30
exim.changes
30
exim.changes
@ -1,3 +1,33 @@
|
||||
Tue May 12 08:19:17 UTC 2020 - wullinger@rz.uni-kiel.de
|
||||
- bring changes from current in +fixes branch
|
||||
(patch-exim-fixes-ee83de04d3087efaf808d1f2235a988275c2ee94)
|
||||
* fixes CVE-2020-12783 (bsc#1171490)
|
||||
* Regard command-line recipients as tainted.
|
||||
* Bug 2489: Fix crash in the "pam" expansion condition.
|
||||
* Use tainted buffers for the transport smtp context.
|
||||
* Bug 2493: Harden ARC verify against Outlook, which has been seen to mix
|
||||
the ordering of its ARC headers. This caused a crash.
|
||||
* Bug 2492: Use tainted memory for retry record when needed. Previously when
|
||||
a new record was being constructed with information from the peer, a trap
|
||||
was taken.
|
||||
* Bug 2494: Unset the default for dmarc_tld_file.
|
||||
* Fix an uninitialised flag in early-pipelining. Previously connections
|
||||
could, depending on the platform, hang at the STARTTLS response.
|
||||
* Bug 2498: Reset a counter used for ARC verify before handling another
|
||||
message on a connection. Previously if one message had ARC headers and
|
||||
the following one did not, a crash could result when adding an
|
||||
Authentication-Results: header.
|
||||
* Bug 2500: Rewind some of the common-coding in string handling between the
|
||||
Exim main code and Exim-related utities.
|
||||
* Fix the variables set by the gsasl authenticator.
|
||||
* Bug 2507: Modules: on handling a dynamic-module (lookups) open failure,
|
||||
only retrieve the errormessage once.
|
||||
* Bug 2501: Fix init call in the heimdal authenticator. Previously it
|
||||
adjusted the size of a major service buffer; this failed because the
|
||||
buffer was in use at the time. Change to a compile-time increase in the
|
||||
buffer size, when this authenticator is compiled into exim.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 1 12:52:10 UTC 2020 - wullinger@rz.uni-kiel.de
|
||||
- don't create logfiles during install
|
||||
* fixes CVE-2020-8015 (bsc#1154183)
|
||||
|
||||
@ -73,7 +73,7 @@ Requires(pre): group(mail)
|
||||
Requires(pre): fileutils textutils
|
||||
%endif
|
||||
Version: 4.93.0.4
|
||||
Release: 2
|
||||
Release: 3
|
||||
%if %{with_mysql}
|
||||
BuildRequires: mysql-devel
|
||||
%endif
|
||||
@ -102,6 +102,7 @@ Source32: eximstats.conf-2.2
|
||||
Source40: exim.service
|
||||
Patch0: exim-tail.patch
|
||||
Patch1: gnu_printf.patch
|
||||
Patch2: patch-exim-fixes-ee83de04d3087efaf808d1f2235a988275c2ee94
|
||||
|
||||
%package -n eximon
|
||||
Summary: Eximon, an graphical frontend to administer Exim's mail queue
|
||||
@ -145,6 +146,7 @@ once, if at all. The rest is done by logrotate / cron.)
|
||||
%setup -q -n exim-%{version}
|
||||
%patch0
|
||||
%patch1 -p1
|
||||
%patch2 -p1
|
||||
# build with fPIE/pie on SUSE 10.0 or newer, or on any other platform
|
||||
%if %{?suse_version:%suse_version}%{?!suse_version:99999} > 930
|
||||
fPIE="-fPIE"
|
||||
|
||||
1184
patch-exim-fixes-ee83de04d3087efaf808d1f2235a988275c2ee94
Normal file
1184
patch-exim-fixes-ee83de04d3087efaf808d1f2235a988275c2ee94
Normal file
File diff suppressed because it is too large
Load Diff
Loading…
x
Reference in New Issue
Block a user