Subject: CVS commit: pkgsrc/mail/sendmail
From: grant beattie
Date: 2003-09-18 11:01:04
Message id: 20030918090104.1DD5DB004@cvs.netbsd.org

Log Message:
update to sendmail 8.12.10.

8.12.10/8.12.10 2003/09/24
        SECURITY: Fix a buffer overflow in address parsing.  Problem
                detected by Michal Zalewski, patch from Todd C. Miller
                of Courtesan Consulting.
        Fix a potential buffer overflow in ruleset parsing.  This problem
                is not exploitable in the default sendmail configuration;
                only if non-standard rulesets recipient (2), final (4), or
                mailer-specific envelope recipients rulesets are used then
                a problem may occur.  Problem noted by Timo Sirainen.
        Accept 0 (and 0/0) as valid input for set MaxMimeHeaderLength.
                Problem noted by Thomas Schulz.
        Add several checks to avoid (theoretical) buffer over/underflows.
        Properly count message size when performing 7->8 or 8->7 bit MIME
                conversions.  Problem noted by Werner Wiethege.
        Properly compute message priority based on size of entire message,
                not just header.  Problem noted by Axel Holscher.
        Reset SevenBitInput to its configured value between SMTP
                transactions for broken clients which do not properly
                announce 8 bit data.  Problem noted by Stefan Roehrich.
        Set {addr_type} during queue runs when processing recipients.
                Based on patch from Arne Jansen.
        Better error handling in case of (very unlikely) queue-id conflicts.
        Perform better error recovery for address parsing, e.g., when
                encountering a comment that is too long.  Problem noted by
                Tanel Kokk, Union Bank of Estonia.
        Add ':' to the allowed character list for bogus HELO/EHLO
                checking.  It is used for IPv6 domain literals.  Patch from
                Iwaizako Takahiro of FreeBit Co., Ltd.
        Reset SASL connection context after a failed authentication attempt.
                Based on patch from Rob Siemborski of CMU.
        Check Berkeley DB compile time version against run time version
                to make sure they match.
        Do not attempt AAAA (IPv6) DNS lookups if IPv6 is not enabled
                in the kernel.
        When a milter adds recipients and one of them causes an error,
                do not ignore the other recipients.  Problem noted by
                Bart Duchesne.
        CONFIG: Use specified SMTP error code in mailertable entries which
                lack a DSN, i.e., "error:### Text".  Problem noted by
                Craig Hunt.
        CONFIG: Call Local_trust_auth with the correct argument.  Patch
                from Jerome Borsboom.
        CONTRIB: Better handling of temporary filenames for doublebounce.pl
                and expn.pl to avoid file overwrites, etc.  Patches from
                Richard A. Nelson of Debian and Paul Szabo.
        MAIL.LOCAL: Fix obscure race condition that could lead to an
                improper mailbox truncation if close() fails after the
                mailbox is fsync()'ed and a new message is delivered
                after the close() and before the truncate().
        MAIL.LOCAL: If mail delivery fails, do not leave behind a
                stale lockfile (which is ignored after the lock timeout).
                Patch from Oleg Bulyzhin of Cronyx Plus LLC.
        Portability:
                Port for AIX 5.2.  Thanks to Steve Hubert of University
                        of Washington for providing access to a computer
                        with AIX 5.2.
                setreuid(2) works on OpenBSD 3.3.  Patch from
                        Todd C. Miller of Courtesan Consulting.
                Allow for custom definition of SMRSH_CMDDIR and SMRSH_PATH
                        on all operating systems.  Patch from Robert Harker
                        of Harker Systems.
                Use strerror(3) on Linux.  If this causes a problem on
                        your Linux distribution, compile with
                        -DHASSTRERROR=0 and tell sendmail.org about it.
        Added Files:
                devtools/OS/AIX.5.2

update provided by Adrian Portelli in PR pkg/22836.

Files:
RevisionActionfile
1.63modifypkgsrc/mail/sendmail/Makefile
1.10modifypkgsrc/mail/sendmail/Makefile.common
1.13modifypkgsrc/mail/sendmail/distinfo