From f75fcd750efad1d366cce38d805a708abb4f3af6 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Wed, 31 Jan 2024 21:19:19 +0000 Subject: Wed Jan 31 21:19:19 UTC 2024 ap/nvme-cli-2.7.1-x86_64-1.txz: Upgraded. l/libnvme-1.7.1-x86_64-1.txz: Added. This is required by nvme-cli. l/pipewire-1.0.2-x86_64-1.txz: Upgraded. n/curl-8.6.0-x86_64-1.txz: Upgraded. n/libmilter-8.18.1-x86_64-1.txz: Upgraded. extra/sendmail/sendmail-8.18.1-x86_64-1.txz: Upgraded. sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because sendmail supports . but some other popular e-mail servers do not. This is resolved in 8.18 and later versions with 'o' in srv_features. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-51765 (* Security fix *) extra/sendmail/sendmail-cf-8.18.1-noarch-1.txz: Upgraded. --- extra/source/sendmail/SlackBuild-sendmail | 4 ++-- extra/source/sendmail/SlackBuild-sendmail-cf | 4 ++-- extra/source/sendmail/site.config.m4 | 5 ++--- 3 files changed, 6 insertions(+), 7 deletions(-) (limited to 'extra') diff --git a/extra/source/sendmail/SlackBuild-sendmail b/extra/source/sendmail/SlackBuild-sendmail index 15cfac15c..bab96ef42 100755 --- a/extra/source/sendmail/SlackBuild-sendmail +++ b/extra/source/sendmail/SlackBuild-sendmail @@ -20,8 +20,8 @@ # OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF # ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. -VERSION=8.17.2 -BUILD=${BUILD:-3} +VERSION=8.18.1 +BUILD=${BUILD:-1} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then diff --git a/extra/source/sendmail/SlackBuild-sendmail-cf b/extra/source/sendmail/SlackBuild-sendmail-cf index 6aa6ce0b5..d64869cde 100755 --- a/extra/source/sendmail/SlackBuild-sendmail-cf +++ b/extra/source/sendmail/SlackBuild-sendmail-cf @@ -20,9 +20,9 @@ # OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF # ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. -VERSION=8.17.2 +VERSION=8.18.1 ARCH=noarch -BUILD=${BUILD:-3} +BUILD=${BUILD:-1} CWD=$(pwd) TMP=${TMP:-/tmp} diff --git a/extra/source/sendmail/site.config.m4 b/extra/source/sendmail/site.config.m4 index 4958d221d..7325cc58f 100644 --- a/extra/source/sendmail/site.config.m4 +++ b/extra/source/sendmail/site.config.m4 @@ -1,6 +1,5 @@ APPENDDEF(`confMAPDEF', `-DNEWDB') -APPENDDEF(`confLIBS', `-lnsl -lssl -lcrypto -lsasl2 -lwrap -lm -ldb -lresolv') +APPENDDEF(`confLIBS', `-lnsl -lssl -lcrypto -lsasl2 -lwrap -lm -ldb -lresolv -licuuc -licui18n -licudata') APPENDDEF(`conf_libmilter_ENVDEF', `-DMILTER') APPENDDEF(`conf_sendmail_ENVDEF', `-DMILTER') -APPENDDEF(`confENVDEF', `-DNETINET6 -DHAS_GETHOSTBYNAME2=1 -DNEWDB -DSTARTTLS -DDANE -DSASL=2 -DTCPWRAPPERS -DNIS -DMAP_REGEX -DSOCKETMAP -DTLS_EC')dnl - +APPENDDEF(`confENVDEF', `-DNETINET6 -DIPV6_FULL -DNEWDB -DSTARTTLS -DDANE -DSASL=2 -DTCPWRAPPERS -DNIS -DMAP_REGEX -DSOCKETMAP -DTLS_EC -DUSE_EAI')dnl -- cgit v1.2.3