diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2022-08-30 19:39:30 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2022-08-31 13:30:01 +0200 |
commit | 1393bd0f4f5d765b7bb00c2f6b3fe98646133af9 (patch) | |
tree | c228b11c08d465c020fda3367d896e4aae27da47 /extra/source/sendmail/sendmail.sasl.auth.fix.patch | |
parent | 71a81b740897cf4e38ea73171f3d0aeb05c848e5 (diff) | |
download | current-1393bd0f4f5d765b7bb00c2f6b3fe98646133af9.tar.gz current-1393bd0f4f5d765b7bb00c2f6b3fe98646133af9.tar.xz |
Tue Aug 30 19:39:30 UTC 202220220830193930_15.0
extra/sendmail/sendmail-8.17.1-x86_64-4_slack15.0.txz: Rebuilt.
Patched sendmail.h to fix SASL auth. Thanks to af7567.
Build without -DUSE_EAI (which is evidently considered experimental) since
the option breaks the vacation binary. Thanks to bitfuzzy and HQuest.
It is possible that this could work but requires additional options. I found
this in the ChangeLog for the SUSE rpm:
Experimental support for SMTPUTF8 (EAI, see RFC 6530-6533) is available
when using the compile time option USE_EAI (see also
devtools/Site/site.config.m4.sample for other required settings) and the cf
option SMTPUTF8. If a mail submission via the command line requires the
use of SMTPUTF8, e.g., because a header uses UTF-8 encoding, but the
addresses on the command line are all ASCII, then the new option -U must be
used, and the cf option SMTPUTF8 must be set in submit.cf.
Any assistance with getting -DUSE_EAI working properly would be appreciated.
extra/sendmail/sendmail-cf-8.17.1-noarch-4_slack15.0.txz: Rebuilt.
patches/packages/vim-9.0.0334-x86_64-1_slack15.0.txz: Upgraded.
Fixed use after free.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3016
(* Security fix *)
patches/packages/vim-gvim-9.0.0334-x86_64-1_slack15.0.txz: Upgraded.
Diffstat (limited to 'extra/source/sendmail/sendmail.sasl.auth.fix.patch')
-rw-r--r-- | extra/source/sendmail/sendmail.sasl.auth.fix.patch | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/extra/source/sendmail/sendmail.sasl.auth.fix.patch b/extra/source/sendmail/sendmail.sasl.auth.fix.patch new file mode 100644 index 000000000..2701fc349 --- /dev/null +++ b/extra/source/sendmail/sendmail.sasl.auth.fix.patch @@ -0,0 +1,21 @@ +--- sendmail/sendmail.h.orig 2022-04-19 21:07:42 UTC ++++ sendmail/sendmail.h +@@ -760,7 +760,7 @@ extern bool filesys_free __P((long)); + # define SASL_IS_AUTH 2 /* authenticated */ + + /* SASL options */ +-# define SASL_AUTH_AUTH 0x1000 /* use auth= only if authenticated */ ++# define SASL_AUTH_AUTH 0x10000 /* use auth= only if authenticated */ + # if SASL >= 20101 + # define SASL_SEC_MASK SASL_SEC_MAXIMUM /* mask for SASL_SEC_* values: sasl.h */ + # else /* SASL >= 20101 */ +@@ -775,6 +775,9 @@ extern bool filesys_free __P((long)); + # endif /* SASL_SEC_NOPLAINTEXT & SASL_SEC_MASK) == 0 ... */ + # endif /* SASL >= 20101 */ + # define MAXOUTLEN 8192 /* length of output buffer, should be 2^n */ ++# if (SASL_AUTH_AUTH & SASL_SEC_MASK) != 0 ++# ERROR "change SASL_AUTH_AUTH notify sendmail.org!" ++# endif + + /* functions */ + extern char *intersect __P((char *, char *, SM_RPOOL_T *)); |