Page MenuHomeFreeBSD

Update mail/postfixadmin to 3.0.2 (security fix)
ClosedPublic

Authored by krion on Feb 10 2017, 11:56 AM.
Tags
None
Referenced Files
Unknown Object (File)
Feb 18 2024, 8:32 AM
Unknown Object (File)
Feb 16 2024, 6:42 AM
Unknown Object (File)
Feb 16 2024, 6:42 AM
Unknown Object (File)
Feb 16 2024, 6:38 AM
Unknown Object (File)
Feb 16 2024, 6:09 AM
Unknown Object (File)
Jan 20 2024, 1:18 AM
Unknown Object (File)
Jan 17 2024, 10:30 PM
Unknown Object (File)
Dec 20 2023, 2:25 AM
Subscribers
None

Details

Summary

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=216932

Maintainer approved.

The most important reason for the release was a SECURITY FIX: don't allow to
delete protected aliases (CVE-2017-5930, PR#23). Thanks to Janfred @github for
the report and the pull request!

Besides that, the following non-security bugs were fixed:

  • fix VacationHandler for PostgreSQL
  • AliasHandler: restrict mailbox subquery to allowed and specified domains to improve performance on setups with lots of mailboxes
  • allow switching between dovecot: password schemes while still accepting passwords hashed using the previous dovecot: scheme
  • FetchmailHandler: use a valid date as default for 'date'
  • fix date formatting in non-english languages when using PostgreSQL
  • various small fixes

Diff Detail

Repository
rP FreeBSD ports repository
Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 7327
Build 7494: arc lint + arc unit

Event Timeline

krion retitled this revision from to Update mail/postfixadmin to 3.0.2 (security fix).
krion updated this object.
krion edited the test plan for this revision. (Show Details)
krion added reviewers: mat, fjoe.
mat edited edge metadata.
This revision is now accepted and ready to land.Feb 10 2017, 5:19 PM
This revision was automatically updated to reflect the committed changes.