UbuntuUpdates.org

Package "postfix-doc"

Name: postfix-doc

Description:

Documentation for Postfix
Latest version: 3.4.13-0ubuntu1.4
Release: focal (20.04)
Level: updates
Repository: main
Head package: postfix
Homepage: http://www.postfix.org

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "postfix-doc"

All arch deb package
APT INSTALL

Other versions of "postfix-doc" in Focal

Repository Area Version
base main 3.4.10-1ubuntu1
security main 3.4.13-0ubuntu1.4

Changelog

Version: 3.4.13-0ubuntu1.4 2024-01-31 16:09:59 UTC

  postfix (3.4.13-0ubuntu1.4) focal-security; urgency=medium

  * SECURITY UPDATE: SMTP smuggling (LP: #2049337)
    - debian/patches/CVE-2023-51764-2.patch: improved fix with reduced
      risks of regression. Introduced
      "smtpd_forbid_bare_newline = normalize".
    - CVE-2023-51764

 -- Allen Huang <email address hidden> Mon, 29 Jan 2024 16:49:03 +0800
Source diff to previous version
2049337 CVE-2023-51764: SMTP smuggling
CVE-2023-51764 Postfix through 3.8.4 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=c

Version: 3.4.13-0ubuntu1.3 2024-01-22 15:07:02 UTC

  postfix (3.4.13-0ubuntu1.3) focal-security; urgency=medium

  * SECURITY UPDATE: SMTP smuggling (LP: #2049337)
    - debian/patches/CVE-2023-51764.patch: introduced
      `smtpd_forbid_bare_newline`. With "smtpd_forbid_bare_newline = yes",
       the Postfix SMTP server disconnects a remote SMTP client that
       sends a line ending in a 'bare newline'.
    - CVE-2023-51764

 -- Allen Huang <email address hidden> Tue, 16 Jan 2024 16:03:32 +0000
Source diff to previous version
2049337 CVE-2023-51764: SMTP smuggling
CVE-2023-51764 Postfix through 3.8.4 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=c

Version: 3.4.13-0ubuntu1.2 2021-09-27 19:06:19 UTC

  postfix (3.4.13-0ubuntu1.2) focal; urgency=medium

  * d/rules: Removed LDFLAG -Bsymbolic-functions (LP: #1885403).

 -- Miriam EspaƱa Acebal <email address hidden> Tue, 07 Sep 2021 08:58:01 +0200
Source diff to previous version
1885403 posttls-finger fails to connect to private/tlsmgr

Version: 3.4.13-0ubuntu1.1 2021-08-26 22:06:20 UTC

  postfix (3.4.13-0ubuntu1.1) focal; urgency=medium

  * d/postfix.postinst: tolerate search domain with a leading dot
    (LP: #1906970)

 -- Paride Legovini <email address hidden> Thu, 12 Aug 2021 14:26:09 +0200
Source diff to previous version
1906970 [SRU] dpkg hook hostname error

Version: 3.4.13-0ubuntu1 2020-07-07 23:07:08 UTC

  postfix (3.4.13-0ubuntu1) focal; urgency=medium

  * New upstream release: 3.4.13
    - Workaround for broken DANE support after an incompatible change in
      GLIBC 2.31 (LP: #1868955)
    - Fix "postfix tls deploy-server-cert", now it handles a missing optional
      argument (LP: #1881196)
  * Drop patch 80_glibc2.30-ftbfs.diff. This patch is not needed anymore and
    it does not cleanly apply to this new upstream release.

 -- Lucas Kanashiro <email address hidden> Fri, 19 Jun 2020 14:11:03 -0300
1868955 [SRU] after upgrade to 20.04: dane support is not working
1881196 [SRU] postfix tls deploy-server-cert fails with \


About   -   Send Feedback to @ubuntu_updates