Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

exim-4.74-5.3 RPM for x86_64

From OpenSuSE 11.4 for x86_64

Name: exim Distribution: openSUSE 11.4
Version: 4.74 Vendor: openSUSE
Release: 5.3 Build date: Wed Feb 23 00:58:29 2011
Group: Productivity/Networking/Email/Servers Build host: build12
Size: 2627631 Source RPM: exim-4.74-5.3.src.rpm
Summary: The Exim Mail Transfer Agent, a Replacement for sendmail
Exim is a mail transport agent (MTA) developed at the University of
Cambridge for use on Unix systems connected to the Internet. It is
freely available under the terms of the GNU General Public Licence. In
style, it is similar to Smail 3, but its facilities are more extensive.
In particular, it has options for verifying incoming sender and
recipient addresses, for refusing mail from specified hosts, networks,
or senders, and for controlling mail relaying.

    Philip Hazel <>






* Fri Feb 04 2011
  - Workround for PCRE version dependancy in version reporting; (beo#1073).
* Fri Feb 04 2011
  - update to 4.74
    - Failure to get a lock on a hints database can have serious
      consequences so log it to the panic log.
    - Log LMTP confirmation messages in the same way as SMTP,
      controlled using the smtp_confirmation log selector.
    - Include the error message when we fail to unlink a spool file.
    - Bugzilla 139: Support dynamically loaded lookups as modules.
    - Bugzilla 139: Documentation and portability issues.
      Avoid GNU Makefile-isms, let Exim continue to build on BSD.
      Handle per-OS dynamic-module compilation flags.
    - Let /dev/null have normal permissions.
      The 4.73 fixes were a little too stringent and complained about the
      permissions on /dev/null.  Exempt it from some checks.
    - Report version information for many libraries, including
      Exim version information for dynamically loaded libraries.  Created
      version.h, now support a version extension string for distributors
      who patch heavily. Dynamic module ABI change.
    - CVE-2011-0017 - check return value of setuid/setgid. This is a
      privilege escalation vulnerability whereby the Exim run-time user
      can cause root to append content of the attacker's choosing to
      arbitrary files.
    - Bugzilla 1041: merged DCC maintainer's fixes for return code.
    - Bugzilla 1071: fix delivery logging with untrusted macros.
      If dropping privileges for untrusted macros, we disabled normal logging
      on the basis that it would fail; for the Exim run-time user, this is not
      the case, and it resulted in successful deliveries going unlogged.
  - update to 4.73
    - Date: & Message-Id: revert to normally being appended to a message,
      only prepend for the Resent-* case.  Fixes regression introduced in
      Exim 4.70 by NM/22 for Bugzilla 607.
    - Include check_rfc2047_length in configure.default because we're seeing
      increasing numbers of administrators be bitten by this.
    - Added DISABLE_DKIM and comment to src/EDITME
    - Bugzilla 994: added openssl_options main configuration option.
    - Bugzilla 995: provide better SSL diagnostics on failed reads.
    - Bugzilla 834: provide a permit_coredump option for pipe transports.
    - Adjust NTLM authentication to handle SASL Initial Response.
    - If TLS negotiated an anonymous cipher, we could end up with SSL but
      without a peer certificate, leading to a segfault because of an
      assumption that peers always have certificates.  Be a little more
      paranoid.  Problem reported by Martin Tscholak.
    - Bugzilla 926: switch ClamAV to use the new zINSTREAM API for content
      filtering; old API available if built with WITH_OLD_CLAMAV_STREAM=yes
      NB: ClamAV planning to remove STREAM in "middle of 2010".
      CL also introduces -bmalware, various -d+acl logging additions and
      more caution in buffer sizes.
    - Implemented reverse_ip expansion operator.
    - Bugzilla 937: provide a "debug" ACL control.
    - Bugzilla 922: Documentation dusting, patch provided by John Horne.
    - Bugzilla 973: Implement --version.
    - Bugzilla 752: Refuse to build/run if Exim user is root/0.
    - Build without WITH_CONTENT_SCAN. Path from Andreas Metzler.
    - Bugzilla 816: support multiple condition rules on Routers.
    - Add bool_lax{} expansion operator and use that for combining multiple
      condition rules, instead of bool{}.  Make both bool{} and bool_lax{}
      ignore trailing whitespace.
    - prevent non-panic DKIM error from being sent to paniclog
    - added tcp_wrappers_daemon_name to allow host entries other than
      "exim" to be used
    - Fix malware regression for cmdline scanner introduced in PP/08.
      Notification from Dr Andrew Aitchison.
    - Change ClamAV response parsing to be more robust and to handle ClamAV's
      ExtendedDetectionInfo response format.
      Notification from John Horne.
    - OpenSSL 1.0.0a compatibility const-ness change, should be backwards
    - Added a CONTRIBUTING file.  Fixed the documentation build to use http:
      XSL and documented dependency on system catalogs, with examples of how
      it normally works.
    - Added Valgrind hooks in store.c to help it capture out-of-bounds store
    - Bugzilla 1044: CVE-2010-4345 - partial fix: restrict default behaviour
      of CONFIGURE_OWNER and CONFIGURE_GROUP options to no longer allow a
      configuration file which is writeable by the Exim user or group.
    - Bugzilla 1044: CVE-2010-4345 - part two: extend checks for writeability
      of configuration files to cover files specified with the -C option if
      they are going to be used with root privileges, not just the default
      configuration file.
    - Bugzilla 1044: CVE-2010-4345 - part three: remove ALT_CONFIG_ROOT_ONLY
      option (effectively making it always true).
    - Add TRUSTED_CONFIG_PREFIX_FILE option to allow alternative configuration
      files to be used while preserving root privileges.
    - Set FD_CLOEXEC on SMTP sockets after forking in the daemon, to ensure
      that rogue child processes cannot use them.
    - Bugzilla 1047: change the default for system_filter_user to be the Exim
      run-time user, instead of root.
    - Add WHITELIST_D_MACROS option to let some macros be overriden by the
      Exim run-time user without dropping privileges.
    - Remove use of va_copy() which breaks pre-C99 systems. Duplicate the
      result string, instead of calling string_vformat() twice with the same
      for other users. Others should always drop root privileges if they use
    - C on the command line, even for a whitelisted configure file.
    - Fixed bug #1002 - Message loss when using multiple deliveries
* Fri Feb 04 2011
  - Check return values of setgid/setuid; CVE-2011-0017; (bnc#668599).
* Fri Dec 10 2010
  - Fix memory corruption in string_format code for pre-11.3 systems;
    CVE-2010-4344; (beo#787); (bnc#658731).
  - Fix remote root vulnerability; CVE-2010-4345; (bnc#658731).
* Wed Jul 14 2010
  - fix mysql provides to be versioned again
* Tue Jun 08 2010
  - update to 4.72
    - installed exipick 20100104.1, adding $max_received_linelength, $data_path,
      and $header_path variables; fixed documentation bugs and typos
    - installed exipick 20100222.0, added --input-dir and --finput to allow
      exipick to access non-standard spools, including the "frozen" queue
    - Bugzilla 965: Support mysql stored procedures.  Patch from Alain Williams
    - Bugzilla 961: Spacing fix (syntax error) on Makefile directives for NetBSD
    - Bugzilla 955: Documentation fix for max_rcpts.  Patch from Andreas Metzler
    - Bugzilla 954: Fix for unknown responses from Dovecot authenticator.  Patch
      from Kirill Miazine
    - Bugzilla 671: Added umask to procmail example.
    - installed exipick 20100323.0, fixing doc bug
    - Bugzilla 988: CVE-2010-2023 - prevent hardlink attack on sticky mail
      directory.  Notification and patch from Dan Rosenberg.
    - PDKIM: Upgrade PolarSSL files to upstream version 0.12.1.
    - Improve log output when DKIM signing operation fails.
    - Treat the transport option dkim_domain as a colon separated list, not as a
      single string, and sign the message with each element, omitting multiple
      occurences of the same signer.
    - Null terminate DKIM strings, Null initialise DKIM variable Bugzilla 985,
      986.  Patch by Simon Arlott
    - Bugzilla 967. dnsdb DNS TXT record bug fix (DKIM-related) Patch by Simon
    - Bugzilla 989: CVE-2010-2024 - work round race condition on MBX locking.
      Notification from Dan Rosenberg.
* Wed May 26 2010
  - fix build of exim-mysql package by correcting path in postinstall script;
    patch kindly provided by Christian Schweingruber
* Tue Nov 24 2009
  - update to 4.71
    Bugfixes over 4.70:
    * Bugzilla 912: Fix DKIM segfault on empty headers/body
    * Bugzilla 913: Documentation fix for gnutls_* options.
    * Bugzilla 722: Documentation for randint. Better randomness defaults.
    * Bugzilla 847: Enable DNSDB lookup by default.
    * Bugzilla 915: Flag broken perl installation during build.
* Sat Nov 14 2009
  - update to 4.70
    This release is a combination feature and bug fix release.
    The major new features are:-
    * Native DKIM support without an external library.
    * Experimental DCC support via dccifd (contributed by Wolfgang Breyha).
    Other changes:-
    * PCRE is no longer included with the Exim distribution. You will
      need a separate PCRE library (and matching headers) to compile
      Exim. You will need to change your Local/Makefile to support
      this. Most modern systems have a packaged PCRE library,
      alternatively PCRE can be found at
    * Experimental Yahoo! Domainkeys support dropped in favor of
      native DKIM support.
    * The documentation has been updated and regenerated.
    As usual, all changes are in the doc/ChangeLog file:
* Tue Jun 09 2009
  - silence some rpmlint warnings, by removing executable permissions
    from utilities packaged under documentation.
  - in the exim-mysql package, remove the versioned Provides, because
    rpmlint doesn't like it at all.



Generated by rpm2html 1.8.1

Fabrice Bellet, Mon Jul 10 03:28:18 2017