SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for postfix-1.1.13-1.i586.rpm :
Tue Sep 16 14:00:00 2003 PLD Team
All persons listed below can be reached at AATTpld.org.pl

$Log: postfix.spec,v $
Revision 1.134.2.9 2003/09/16 02:15:50 kloczek
- updated to 1.1.13,
- SECURITY FIX:
Fixed a denial of service condition in the Postfix smtpd, qmgr, and other
programs that use the trivial-rewrite service. The problem is triggered
when an invalid address resolves to an impossible result. This causes
the affected programs to reject the result and to retry
the trivial-rewrite request indefinitely.

Revision 1.134.2.8 2003/08/14 02:57:26 kloczek
- relase 4,
- SECURITY FIXES: CAN-2003-0468, CAN-2003-0540
Two vulnerabilities which can be exploited by malicious people to cause
a DoS (Denial of Service) on a vulnerable system or use it to conduct
bounce scans and Distributed DoS attacks on other systems.
Both vulnerabilities are caused due to errors in the address parsing code.
The first vulnerability can be exploited to cause a DoS on a vulnerable
system in one of two ways:
1) It is possible to cause the queue manager (nqmgr) to stop processing the
queue until a specific entry is removed. This can be achieved by eg.
specifying an email that will generate a bounce and has an invalid
source mailbox of \"<.!>\". The service will lock up, when trying to
parse the return address.
2) It is possible to crash a single instance of the SMTP receiver by
specifying a valid source mailbox and an invalid recipient of \"<.!>\".
This will cause the service to freeze when trying to parse the recipient
mailbox, and the whole system may potentially be crashed by doing this
repeatedly.

Revision 1.134.2.7 2003/03/05 22:59:20 ankry
- BR: new libinet6, rel. 3
STBR for test

Revision 1.134.2.6 2003/03/05 12:54:52 ankry
- conditionally require openssl
- rel. 2

Revision 1.134.2.5 2003/03/05 10:47:34 qboosh
- BR+R openssl 0.9.6i

Revision 1.134.2.4 2003/03/05 10:41:48 orzech
- fixed pl.patch
- added missing tables
- rel.1

Revision 1.134.2.3 2003/01/29 12:08:25 qboosh
- added _without_mysql bcond description

Revision 1.134.2.2 2003/01/29 09:33:59 qboosh
- ipv6 fixes (skip
*/0 networks, added v6 support for mynetworks_style)
- release 0.2, STBR for testing (to ra/test)

Revision 1.134.2.1 2003/01/28 14:33:56 qboosh
- updated to 1.1.12 (bugfix release) with tls 0.8.12
- NFY (working on bug in ipv6/libinet6 support)

Revision 1.134 2002/10/25 14:18:17 qboosh
- use absolute symlinks between directories; release 9

Revision 1.133 2002/09/24 09:57:38 orzech
- cosmetics
- rel.8, STBR (to build proper src.rpm)

Revision 1.132 2002/09/23 12:20:51 orzech
- fixed pl.patch
- reordered patches, --without ipv6 works
- TODO: 1 chunk rejected when: --without ipv6 --with polish

Revision 1.131 2002/09/18 10:46:13 orzech
- small fix

Revision 1.130 2002/09/18 10:28:54 orzech
- works w/ and w/o pl.patch
- rel 7, STBR

Revision 1.129 2002/09/18 10:21:51 orzech
- pl.patch in bcond

Revision 1.128 2002/08/18 10:30:17 kloczek
- release 6: merge master.cf_cyrus patch from Conectiva (fix cyrus deliver
program path in master.cf: must be /usr/lib/cyrus/deliver).

Revision 1.127 2002/08/17 21:03:13 qboosh
- better messages in pre

Revision 1.126 2002/07/24 19:40:29 qboosh
- typo

Revision 1.125 2002/07/24 13:23:20 qboosh
- added fix from Debian to ipv6 patch: now v4 addresses in maps work with
v6-mapped IPs
- new %%doc, release 2

Revision 1.124 2002/06/08 23:23:12 lukasz
- 1.1.11

Revision 1.123 2002/05/29 08:04:52 orzech
- fixed pl.patch
- rel 2, STBR

Revision 1.122 2002/05/16 15:15:31 kloczek
- merge translations from Conectiva.

Revision 1.121 2002/05/16 11:31:02 orzech
- up to 1.1.10 - builds, looks good - testing
- rel 1

Revision 1.120 2002/05/05 10:23:02 orzech
- updated to 1.1.8 (pfixtls to 0.8.7-1.1.7-0.9.6c)
- builds, works fine
- rel. 1 - STBR to /test

Revision 1.119 2002/04/20 08:02:36 radzio

remove Requires: procmail (now we do not use it in default config)

Revision 1.118 2002/03/14 13:30:07 qboosh
- ugh, -devel not -libs, of course

Revision 1.117 2002/03/14 13:29:30 qboosh
- BuildRequires: postgresql-libs

Revision 1.116 2002/03/14 13:26:59 qboosh
- updated to 1.1.5 (bugfixes - see HISTORY)
- added PostgreSQL maps support (patch from Konrad Rzentarzewski)
- Requires: findutils (for \"postfix check\")
- release 0.1, STBR-test

Revision 1.115 2002/03/08 10:37:22 aflinta
- added Requires: diffutils needed by postfix check command
- release 5

Revision 1.114 2002/03/05 08:37:44 qboosh
- \"Requires: openldap >= 2.0.0\" moved from base to -dict-ldap subpackage
- release 4, STBR

Revision 1.113 2002/03/02 12:18:24 kloczek
- updated to 1.1.3, release 3, Epoch: 2 (merge DEVEL branch to HEAD),
- remove linking with libnsl (isn\'t neccessary in this case).

Revision 1.112 2002/02/22 23:29:36 kloczek
- removed all Group fields translations (oure rpm now can handle translating
Group field using gettext).

Revision 1.111 2002/02/18 13:35:46 ankry
- added translations from RH
- adapterized
- release 7

Revision 1.110 2002/02/18 12:50:35 gotar
- (postun) require flag for {group,user}del.

Revision 1.109 2002/02/18 12:00:56 gotar
- changed PreReqs to Requires(pre|post|),
- release 6.

Revision 1.107.2.7 2002/02/21 13:34:25 qboosh
- MFH: Requires(
*), translations from RH
- experimental: dynamicmaps patch extracted from Debian - support for loadable maps
- test release 0.5

Revision 1.107.2.6 2002/02/14 09:56:17 qboosh
- updated to 1.1.3 (minor bugfixes and safety checks)

Revision 1.107.2.5 2002/02/13 15:27:03 qboosh
- added trigger to update master.cf from previous versions
- release 0.2 - upgrade with automagic master.cf update must be tested

Revision 1.107.2.4 2002/01/30 11:33:29 qboosh
- config patch: added setgid_group=maildrop - now postfix starts
in default configuration; time for testing...

Revision 1.107.2.3 2002/01/29 16:07:15 qboosh
- ipv6 patch: fixes in mynetworks detection and relay checking based on
mynetworks (IMPORTANT for those, who doesn\'t set mynetworks explicitly):
- disabled open relay if mynetworks contain something that is not address
- inet_addr_local: generate netmasks list too (somebody forgot about it!) -
could cause open relay too (random netmasks)
- NFY, some part of configuration must be updated...

Revision 1.107.2.2 2002/01/28 16:24:09 qboosh
- fixes part 1 (now starts, after adding setgid_group=maildrop to main.cf)

Revision 1.107.2.1 2002/01/28 15:05:08 qboosh
- updated to 1.1.2 release(sic!) (for testing now)


  
ICM