diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2024-01-22 20:57:12 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2024-01-23 13:30:31 +0100 |
| commit | 2bde1d73b5ae09f99f48ff7072b5d8ca5d759014 (patch) | |
| tree | 9ad62c5b25822bb699778099b26f13a3ccd55418 /ChangeLog.txt | |
| parent | 4e883273037a35e5e60bbbb34c2e8720dba2711f (diff) | |
| download | current-2bde1d73b5ae09f99f48ff7072b5d8ca5d759014.tar.gz current-2bde1d73b5ae09f99f48ff7072b5d8ca5d759014.tar.xz | |
Mon Jan 22 20:57:12 UTC 202420240122205712_15.0
patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txz: Upgraded.
Security (inbound SMTP smuggling): with "smtpd_forbid_bare_newline
= normalize" (default "no" for Postfix < 3.9), the Postfix
SMTP server requires the standard End-of-DATA sequence
<CR><LF>.<CR><LF>, and otherwise allows command or message
content lines ending in the non-standard <LF>, processing
them as if the client sent the standard <CR><LF>.
The alternative setting, "smtpd_forbid_bare_newline = reject"
will reject any command or message that contains a bare
<LF>, and is more likely to cause problems with legitimate
clients.
For backwards compatibility, local clients are excluded by
default with "smtpd_forbid_bare_newline_exclusions =
$mynetworks".
For more information, see:
https://www.postfix.org/smtp-smuggling.html
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index ace4cd217..ff5bf714c 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,22 @@ +Mon Jan 22 20:57:12 UTC 2024 +patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txz: Upgraded. + Security (inbound SMTP smuggling): with "smtpd_forbid_bare_newline + = normalize" (default "no" for Postfix < 3.9), the Postfix + SMTP server requires the standard End-of-DATA sequence + <CR><LF>.<CR><LF>, and otherwise allows command or message + content lines ending in the non-standard <LF>, processing + them as if the client sent the standard <CR><LF>. + The alternative setting, "smtpd_forbid_bare_newline = reject" + will reject any command or message that contains a bare + <LF>, and is more likely to cause problems with legitimate + clients. + For backwards compatibility, local clients are excluded by + default with "smtpd_forbid_bare_newline_exclusions = + $mynetworks". + For more information, see: + https://www.postfix.org/smtp-smuggling.html + (* Security fix *) ++--------------------------+ Sun Jan 21 20:50:08 UTC 2024 extra/tigervnc/tigervnc-1.12.0-x86_64-5_slack15.0.txz: Rebuilt. Recompiled against xorg-server-1.20.14, including the latest patches for |