Univention Bugzilla – Bug 46636
postfix: Multiple issues (4.3)
Last modified: 2018-05-16 17:04:10 CEST
New Debian postfix 3.1.8-0+deb9u1 fixes: This update addresses the following issues: * Rewrite debian/postfix-instance-generator to avoid use of postmulti to fix failures when inet_interfaces != all. * DANE support. Postfix builds with OpenSSL 1.0.0 or 1.0.1 failed to send email to some sites with "TLSA 2 X X" records associated with an intermediate CA certificate. * Missing dynamicmaps support in the Postfix sendmail command broke authorized_submit_users with a dynamically-loaded map type. * Do not log warnings that some restriction returns OK, when the access map DISCARD feature is in effect. * The DB_CONFIG bugfix broke Berkeley DB configurations with a relative pathname. * Reportedly, some res_query(3) implementation can return -1 with h_errno==0. Instead of terminating with a panic, the Postfix DNS client now logs a warning and sets h_errno to TRY_AGAIN. * Missing mailbox seek-to-end error check in the local(8) delivery agent. * Incorrect mailbox seek-to-end error message in the virtual(8) delivery agent.
[4.3-0] aaabf31243 Bug #46636: postfix_3.1.8-0+deb9u1
--- mirror/ftp/4.3/unmaintained/4.3-0/source/postfix_3.1.6-0+deb9u1.dsc +++ apt/ucs_4.3-0-errata4.3-0/source/postfix_3.1.8-0+deb9u1.dsc @@ -1,3 +1,41 @@ +3.1.8-0+deb9u1 [Fri, 23 Feb 2018 17:29:10 -0500] Scott Kitterman <scott@kitterman.com>: + + [Scott Kitterman] + + * Rewrite debian/postfix-instance-generator to avoid use of postmulti to fix + failures when inet_interfaces != all. Closes: #882141 + * Refresh patches + * Add postfix 3.1 specific watch file + + [Wietse Venema] + + * 3.1.7 + - Bugfix (introduced: Postfix 3.1): DANE support. Postfix + builds with OpenSSL 1.0.0 or 1.0.1 failed to send email to + some sites with "TLSA 2 X X" records associated with an + intermediate CA certificate. Problem report and initial + fix by Erwan Legrand. File: src/tls/tls_dane.c. + - Bugfix (introduced: Postfix 3.0) missing dynamicmaps support + in the Postfix sendmail command broke authorized_submit_users + with a dynamically-loaded map type. File: sendmail/sendmail.c. + * 3.1.8 + - Bugfix (introduced: Postfix 2.1): don't log warnings + that some restriction returns OK, when the access map + DISCARD feature is in effect. File: smtpd/smtpd_check.c. + - Bugfix (introduced: 20170611): the DB_CONFIG bugfix broke + Berkeley DB configurations with a relative pathname. File: + util/dict_db.c. Closes: #879200 + - Workaround: reportedly, some res_query(3) implementation + can return -1 with h_errno==0. Instead of terminating with + a panic, the Postfix DNS client now logs a warning and sets + h_errno to TRY_AGAIN. File: dns/dns_lookup.c. + - Documentation patches by Sven Neuhaus. Files: + proto/FORWARD_SECRECY_README.html, proto/SMTPD_ACCESS_README.html. + - Cleanup: missing mailbox seek-to-end error check in the + local(8) delivery agent. File: local/mailbox.c. + - Cleanup: incorrect mailbox seek-to-end error message in the + virtual(8) delivery agent. File: virtual/mailbox.c. + 3.1.6-0+deb9u1 [Wed, 27 Sep 2017 00:56:28 -0400] Scott Kitterman <scott@kitterman.com>: [Wietse Venema]
* No UCS specific patches * Comparison to previously shipped version ok * Binary package update Ok * Jenkins Mail tests ok * Advisory Ok
<http://errata.software-univention.de/ucs/4.3/68.html>