Pullup ticket #5719 - requested by maya mail/exim-html: security update Revisions pulled up: - mail/exim-html/Makefile 1.36 - mail/exim-html/PLIST 1.17 - mail/exim-html/distinfo 1.29 - mail/exim/Makefile 1.158 - mail/exim/distinfo 1.68 - mail/exim/files/Makefile-DragonFly deleted - mail/exim/files/os.h-DragonFly deleted ------------------------------------------------------------------- Module Name: pkgsrc Committed By: adam Date: Wed Mar 7 08:24:47 UTC 2018 Modified Files: pkgsrc/mail/exim: Makefile distinfo pkgsrc/mail/exim-html: Makefile PLIST distinfo Removed Files: pkgsrc/mail/exim/files: Makefile-DragonFly os.h-DragonFly Log Message: exim: updated to 4.90.1 Exim version 4.90.1 JH/03 Fix pgsql lookup for multiple result-tuples with a single column. Previously only the last row was returned. JH/04 Bug 2217: Tighten up the parsing of DKIM signature headers. Previously we assumed that tags in the header were well-formed, and parsed the element content after inspecting only the first char of the tag. Assumptions at that stage could crash the receive process on malformed input. JH/05 Bug 2215: Fix crash associated with dnsdb lookup done from DKIM ACL. While running the DKIM ACL we operate on the Permanent memory pool so that variables created with "set" persist to the DATA ACL. Also (at any time) DNS lookups that fail create cache records using the Permanent pool. But expansions release any allocations made on the current pool - so a dnsdb lookup expansion done in the DKIM ACL releases the memory used for the DNS negative-cache, and bad things result. Solution is to switch to the Main pool for expansions. While we're in that code, add checks on the DNS cache during store_reset, active in the testsuite. Problem spotted, and debugging aided, by Wolfgang Breyha. JH/06 Fix issue with continued-connections when the DNS shifts unreliably. When none of the hosts presented to a transport match an already-open connection, close it and proceed with the list. Previously we would queue the message. Spotted by Lena with Yahoo, probably involving round-robin DNS. JH/07 Bug 2214: Fix SMTP responses resulting from non-accept result of MIME ACL. Previously a spurious "250 OK id=" response was appended to the proper failure response. JH/10 Bug 2223: Fix mysql lookup returns for the no-data case (when the number of rows affected is given instead). JH/12 Bug 2230: Fix cutthrough routing for nonfirst messages in an initiating SMTP connection. Previously, when one had more receipients than the first, an abortive onward connection was made. Move to full support for multiple onward connections in sequence, handling cutthrough connection for all multi-message initiating connections. JH/13 Bug 2229: Fix cutthrough routing for nonstandard port numbers defined by routers. Previously, a multi-recipient message would fail to match the onward-connection opened for the first recipient, and cause its closure. JH/14 Bug 2174: A timeout on connect for a callout was also erroneously seen as a timeout on read on a GnuTLS initiating connection, resulting in the initiating connection being dropped. This mattered most when the callout was marked defer_ok. Fix to keep the two timeout-detection methods separate. HS/01 Fix Buffer overflow in base64d() (CVE-2018-6789) JH/16 Fix bug in DKIM verify: a buffer overflow could corrupt the malloc metadata, resulting in a crash in free(). PP/01 Fix broken Heimdal GSSAPI authenticator integration. Broken in f2ed27cf5, missing an equals sign for specified-initialisers. Broken also in d185889f4, with init system revamp. To generate a diff of this commit: cvs rdiff -u -r1.157 -r1.158 pkgsrc/mail/exim/Makefile cvs rdiff -u -r1.67 -r1.68 pkgsrc/mail/exim/distinfo cvs rdiff -u -r1.35 -r1.36 pkgsrc/mail/exim-html/Makefile cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/exim-html/PLIST cvs rdiff -u -r1.28 -r1.29 pkgsrc/mail/exim-html/distinfo cvs rdiff -u -r1.1 -r0 pkgsrc/mail/exim/files/Makefile-DragonFly \ pkgsrc/mail/exim/files/os.h-DragonFlydiff -r1.156 -r1.156.2.1 pkgsrc/mail/exim/Makefile
(spz)
@@ -1,21 +1,20 @@ | @@ -1,21 +1,20 @@ | |||
1 | # $NetBSD: Makefile,v 1.156 2017/11/30 16:45:30 adam Exp $ | 1 | # $NetBSD: Makefile,v 1.156.2.1 2018/03/08 20:22:06 spz Exp $ | |
2 | 2 | |||
3 | DISTNAME= exim-4.89 | 3 | DISTNAME= exim-4.90.1 | |
4 | PKGREVISION= 3 | |||
5 | CATEGORIES= mail net | 4 | CATEGORIES= mail net | |
6 | MASTER_SITES= ftp://ftp.exim.org/pub/exim/exim4/ | 5 | MASTER_SITES= ftp://ftp.exim.org/pub/exim/exim4/ | |
7 | MASTER_SITES+= http://dl.ambiweb.de/mirrors/ftp.exim.org/exim/exim4/ | 6 | MASTER_SITES+= https://ftp.exim.org/pub/exim/exim4/ | |
8 | EXTRACT_SUFX= .tar.bz2 | 7 | EXTRACT_SUFX= .tar.xz | |
9 | 8 | |||
10 | MAINTAINER= abs@NetBSD.org | 9 | MAINTAINER= abs@NetBSD.org | |
11 | HOMEPAGE= http://www.exim.org/ | 10 | HOMEPAGE= http://www.exim.org/ | |
12 | COMMENT= The Exim mail transfer agent, a replacement for sendmail | 11 | COMMENT= The Exim mail transfer agent, a replacement for sendmail | |
13 | LICENSE= gnu-gpl-v2 | 12 | LICENSE= gnu-gpl-v2 | |
14 | 13 | |||
15 | CONFLICTS+= exim-exiscan-[0-9]* | 14 | CONFLICTS+= exim-exiscan-[0-9]* | |
16 | 15 | |||
17 | USE_TOOLS+= perl:run | 16 | USE_TOOLS+= perl:run | |
18 | BUILD_DEFS+= VARBASE | 17 | BUILD_DEFS+= VARBASE | |
19 | 18 | |||
20 | MAKE_ENV+= SSLBASE=${SSLBASE:Q} | 19 | MAKE_ENV+= SSLBASE=${SSLBASE:Q} | |
21 | MAKE_ENV+= INST_CHOWN=${CHOWN:Q} | 20 | MAKE_ENV+= INST_CHOWN=${CHOWN:Q} | |
@@ -64,31 +63,30 @@ SUBST_VARS.exim= PKGSRC_EXIM_VERSION | @@ -64,31 +63,30 @@ SUBST_VARS.exim= PKGSRC_EXIM_VERSION | |||
64 | 63 | |||
65 | SUBST_CLASSES+= cflags | 64 | SUBST_CLASSES+= cflags | |
66 | SUBST_STAGE.cflags= post-patch | 65 | SUBST_STAGE.cflags= post-patch | |
67 | SUBST_MESSAGE.cflags= Removing hard-coded CFLAGS | 66 | SUBST_MESSAGE.cflags= Removing hard-coded CFLAGS | |
68 | SUBST_FILES.cflags= OS/Makefile-* | 67 | SUBST_FILES.cflags= OS/Makefile-* | |
69 | SUBST_SED.cflags= -e 's,^CFLAGS=.*,,' | 68 | SUBST_SED.cflags= -e 's,^CFLAGS=.*,,' | |
70 | 69 | |||
71 | INSTALL_ARG= INSTALL_ARG=-no_chown | 70 | INSTALL_ARG= INSTALL_ARG=-no_chown | |
72 | INSTALL_ENV+= ${INSTALL_ARG:Q} | 71 | INSTALL_ENV+= ${INSTALL_ARG:Q} | |
73 | 72 | |||
74 | .include "options.mk" | 73 | .include "options.mk" | |
75 | 74 | |||
76 | post-extract: | 75 | post-extract: | |
76 | mv ${WRKSRC}/OS/unsupported/*-* ${WRKSRC}/OS/ | |||
77 | mkdir ${WRKSRC}/Local | 77 | mkdir ${WRKSRC}/Local | |
78 | cp ${WRKSRC}/src/EDITME ${WRKSRC}/Local/Makefile.pkgsrc | 78 | cp ${WRKSRC}/src/EDITME ${WRKSRC}/Local/Makefile.pkgsrc | |
79 | cp ${WRKSRC}/exim_monitor/EDITME ${WRKSRC}/Local/eximon.conf.pkgsrc | 79 | cp ${WRKSRC}/exim_monitor/EDITME ${WRKSRC}/Local/eximon.conf.pkgsrc | |
80 | cp ${FILESDIR}/Makefile-DragonFly ${FILESDIR}/os.h-DragonFly \ | |||
81 | ${WRKSRC}/OS/ | |||
82 | 80 | |||
83 | pre-configure: | 81 | pre-configure: | |
84 | sed -e 's:@PREFIX@:${PREFIX}:' \ | 82 | sed -e 's:@PREFIX@:${PREFIX}:' \ | |
85 | -e 's:@PKG_SYSCONFDIR@:${PKG_SYSCONFDIR}:' \ | 83 | -e 's:@PKG_SYSCONFDIR@:${PKG_SYSCONFDIR}:' \ | |
86 | -e 's:@EXIM_USER@:${EXIM_USER}:' \ | 84 | -e 's:@EXIM_USER@:${EXIM_USER}:' \ | |
87 | -e 's:@EXIM_GROUP@:${EXIM_GROUP}:' \ | 85 | -e 's:@EXIM_GROUP@:${EXIM_GROUP}:' \ | |
88 | -e 's:@EXIM_USE_DB_CONFIG@:${EXIM_USE_DB_CONFIG}:' \ | 86 | -e 's:@EXIM_USE_DB_CONFIG@:${EXIM_USE_DB_CONFIG}:' \ | |
89 | -e 's:@EXIM_DBMLIB@:${EXIM_DBMLIB}:' \ | 87 | -e 's:@EXIM_DBMLIB@:${EXIM_DBMLIB}:' \ | |
90 | -e 's:@EXIM_INCLUDE@:${EXIM_INCLUDE}:' \ | 88 | -e 's:@EXIM_INCLUDE@:${EXIM_INCLUDE}:' \ | |
91 | -e 's:@LOOKUP_LIBS@:${LOOKUP_LIBS}:' \ | 89 | -e 's:@LOOKUP_LIBS@:${LOOKUP_LIBS}:' \ | |
92 | -e 's:@CHOWN@:${CHOWN}:' \ | 90 | -e 's:@CHOWN@:${CHOWN}:' \ | |
93 | -e 's:@CHGRP@:${CHGRP}:' \ | 91 | -e 's:@CHGRP@:${CHGRP}:' \ | |
94 | -e 's:@CHMOD@:${CHMOD}:' \ | 92 | -e 's:@CHMOD@:${CHMOD}:' \ |
@@ -1,10 +1,10 @@ | @@ -1,10 +1,10 @@ | |||
1 | $NetBSD: distinfo,v 1.67 2017/03/18 07:08:23 adam Exp $ | 1 | $NetBSD: distinfo,v 1.67.10.1 2018/03/08 20:22:06 spz Exp $ | |
2 | 2 | |||
3 | SHA1 (exim-4.89.tar.bz2) = 6e4c042d55c57152d56dfa9745abd9e9665a85f5 | 3 | SHA1 (exim-4.90.1.tar.xz) = ae89fd6fe0d377f68b4c4b96d9e3d0d630226aba | |
4 | RMD160 (exim-4.89.tar.bz2) = db87de7a5bef115efe062153a8a14e10b4ee884b | 4 | RMD160 (exim-4.90.1.tar.xz) = 3d3e2c9a04d26e5dbd1f8f01c30fa38198b784a3 | |
5 | SHA512 (exim-4.89.tar.bz2) = 1e059966a93b47f055ab4ec2a4556f2c918aff56ea0367585f3a853f00411e9c275e13be4f9ae615a468fa06263135cd6a138fa1753f1b7fb3259a3321fcca65 | 5 | SHA512 (exim-4.90.1.tar.xz) = b4830a2e03023b2bafc9e62535f467bb61b0f1398b6b3af0a7ef6f49e6cba60a9496e6762d0898b7ac1c2823db8cf96ed9f37e26b05809b4ba01725d9e72b806 | |
6 | Size (exim-4.89.tar.bz2) = 1844430 bytes | 6 | Size (exim-4.90.1.tar.xz) = 1721460 bytes | |
7 | SHA1 (patch-Local_Makefile.pkgsrc) = de19076443c4d89a7ead97a0cabdec9bb784dd9f | 7 | SHA1 (patch-Local_Makefile.pkgsrc) = de19076443c4d89a7ead97a0cabdec9bb784dd9f | |
8 | SHA1 (patch-OS_Makefile-Default) = 6af17f036ed02a3bc37c1f303269eea447fcb691 | 8 | SHA1 (patch-OS_Makefile-Default) = 6af17f036ed02a3bc37c1f303269eea447fcb691 | |
9 | SHA1 (patch-lookups_Makefile) = cfc40dba3f75ef37b9887f7767139ad50cf9d4e5 | 9 | SHA1 (patch-lookups_Makefile) = cfc40dba3f75ef37b9887f7767139ad50cf9d4e5 | |
10 | SHA1 (patch-scripts_exim__install) = aa0a31e77d5f76e33bc92140c14d39c79f710b95 | 10 | SHA1 (patch-scripts_exim__install) = aa0a31e77d5f76e33bc92140c14d39c79f710b95 |
@@ -1,20 +1,20 @@ | @@ -1,20 +1,20 @@ | |||
1 | # $NetBSD: Makefile,v 1.35 2017/03/18 07:08:23 adam Exp $ | 1 | # $NetBSD: Makefile,v 1.35.10.1 2018/03/08 20:22:05 spz Exp $ | |
2 | 2 | |||
3 | DISTNAME= exim-html-4.89 | 3 | DISTNAME= exim-html-4.90.1 | |
4 | CATEGORIES= mail net | 4 | CATEGORIES= mail net | |
5 | MASTER_SITES= ftp://ftp.exim.org/pub/exim/exim4/ | 5 | MASTER_SITES= ftp://ftp.exim.org/pub/exim/exim4/ | |
6 | MASTER_SITES+= ftp://ftp.csx.cam.ac.uk/pub/software/email/exim/exim4/ | 6 | MASTER_SITES+= ftp://ftp.csx.cam.ac.uk/pub/software/email/exim/exim4/ | |
7 | EXTRACT_SUFX= .tar.bz2 | 7 | EXTRACT_SUFX= .tar.xz | |
8 | 8 | |||
9 | MAINTAINER= abs@NetBSD.org | 9 | MAINTAINER= abs@NetBSD.org | |
10 | HOMEPAGE= http://www.exim.org/ | 10 | HOMEPAGE= http://www.exim.org/ | |
11 | COMMENT= HTML documentation for the Exim mail transfer agent | 11 | COMMENT= HTML documentation for the Exim mail transfer agent | |
12 | 12 | |||
13 | NO_BUILD= yes | 13 | NO_BUILD= yes | |
14 | INSTALLATION_DIRS= share/doc/exim/html | 14 | INSTALLATION_DIRS= share/doc/exim/html | |
15 | 15 | |||
16 | USE_TOOLS+= pax | 16 | USE_TOOLS+= pax | |
17 | 17 | |||
18 | do-install: | 18 | do-install: | |
19 | cd ${WRKSRC}/doc && pax -rw html ${DESTDIR}${PREFIX}/share/doc/exim | 19 | cd ${WRKSRC}/doc && pax -rw html ${DESTDIR}${PREFIX}/share/doc/exim | |
20 | 20 |
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | @comment $NetBSD: PLIST,v 1.16 2017/03/18 07:08:23 adam Exp $ | 1 | @comment $NetBSD: PLIST,v 1.16.10.1 2018/03/08 20:22:05 spz Exp $ | |
2 | share/doc/exim/html/spec_html/ch-access_control_lists.html | 2 | share/doc/exim/html/spec_html/ch-access_control_lists.html | |
3 | share/doc/exim/html/spec_html/ch-adding_a_local_scan_function_to_exim.html | 3 | share/doc/exim/html/spec_html/ch-adding_a_local_scan_function_to_exim.html | |
4 | share/doc/exim/html/spec_html/ch-adding_new_drivers_or_lookup_types.html | 4 | share/doc/exim/html/spec_html/ch-adding_new_drivers_or_lookup_types.html | |
5 | share/doc/exim/html/spec_html/ch-address_batching_in_local_transports.html | 5 | share/doc/exim/html/spec_html/ch-address_batching_in_local_transports.html | |
6 | share/doc/exim/html/spec_html/ch-address_rewriting.html | 6 | share/doc/exim/html/spec_html/ch-address_rewriting.html | |
7 | share/doc/exim/html/spec_html/ch-building_and_installing_exim.html | 7 | share/doc/exim/html/spec_html/ch-building_and_installing_exim.html | |
8 | share/doc/exim/html/spec_html/ch-concept_index.html | 8 | share/doc/exim/html/spec_html/ch-concept_index.html | |
9 | share/doc/exim/html/spec_html/ch-content_scanning_at_acl_time.html | 9 | share/doc/exim/html/spec_html/ch-content_scanning_at_acl_time.html | |
10 | share/doc/exim/html/spec_html/ch-customizing_bounce_and_warning_messages.html | 10 | share/doc/exim/html/spec_html/ch-customizing_bounce_and_warning_messages.html | |
11 | share/doc/exim/html/spec_html/ch-domain_host_address_and_local_part_lists.html | 11 | share/doc/exim/html/spec_html/ch-domain_host_address_and_local_part_lists.html | |
12 | share/doc/exim/html/spec_html/ch-embedded_perl.html | 12 | share/doc/exim/html/spec_html/ch-embedded_perl.html | |
13 | share/doc/exim/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html | 13 | share/doc/exim/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html | |
14 | share/doc/exim/html/spec_html/ch-environment_for_running_local_transports.html | 14 | share/doc/exim/html/spec_html/ch-environment_for_running_local_transports.html | |
@@ -138,14 +138,17 @@ share/doc/exim/html/spec_html/filter_toc | @@ -138,14 +138,17 @@ share/doc/exim/html/spec_html/filter_toc | |||
138 | share/doc/exim/html/spec_html/index.html | 138 | share/doc/exim/html/spec_html/index.html | |
139 | share/doc/exim/html/spec_html/index_toc.xml | 139 | share/doc/exim/html/spec_html/index_toc.xml | |
140 | share/doc/exim/html/static/css/common.css | 140 | share/doc/exim/html/static/css/common.css | |
141 | share/doc/exim/html/static/css/index.css | 141 | share/doc/exim/html/static/css/index.css | |
142 | share/doc/exim/html/static/doc/CVE-2016-1531.txt | 142 | share/doc/exim/html/static/doc/CVE-2016-1531.txt | |
143 | share/doc/exim/html/static/doc/CVE-2016-9963.txt | 143 | share/doc/exim/html/static/doc/CVE-2016-9963.txt | |
144 | share/doc/exim/html/static/doc/chapter.css | 144 | share/doc/exim/html/static/doc/chapter.css | |
145 | share/doc/exim/html/static/doc/chapter.js | 145 | share/doc/exim/html/static/doc/chapter.js | |
146 | share/doc/exim/html/static/doc/contents.png | 146 | share/doc/exim/html/static/doc/contents.png | |
147 | share/doc/exim/html/static/doc/index.css | 147 | share/doc/exim/html/static/doc/index.css | |
148 | share/doc/exim/html/static/doc/index.js | 148 | share/doc/exim/html/static/doc/index.js | |
149 | share/doc/exim/html/static/doc/minus-12x12.png | 149 | share/doc/exim/html/static/doc/minus-12x12.png | |
150 | share/doc/exim/html/static/doc/plus-12x12.png | 150 | share/doc/exim/html/static/doc/plus-12x12.png | |
151 | share/doc/exim/html/static/doc/security/CVE-2016-1531.txt | |||
152 | share/doc/exim/html/static/doc/security/CVE-2016-9963.txt | |||
153 | share/doc/exim/html/static/doc/security/CVE-2018-6789.txt | |||
151 | share/doc/exim/html/static/js/common.js | 154 | share/doc/exim/html/static/js/common.js |
@@ -1,6 +1,6 @@ | @@ -1,6 +1,6 @@ | |||
1 | $NetBSD: distinfo,v 1.28 2017/03/18 07:08:23 adam Exp $ | 1 | $NetBSD: distinfo,v 1.28.10.1 2018/03/08 20:22:05 spz Exp $ | |
2 | 2 | |||
3 | SHA1 (exim-html-4.89.tar.bz2) = 3a3979fba7df3697cec10d3dee846b18384e5de7 | 3 | SHA1 (exim-html-4.90.1.tar.xz) = ded60f8741511fed7f6057ccb33f7a8bb7df9d72 | |
4 | RMD160 (exim-html-4.89.tar.bz2) = de3d3b70f4a653880e8b2d6fe4c407cf37a7eb14 | 4 | RMD160 (exim-html-4.90.1.tar.xz) = 2d2c6f7613aff06ac945c7995723b394b708295a | |
5 | SHA512 (exim-html-4.89.tar.bz2) = 083678e5dc5acc23cd7f72b6b3e2e6d4e60bab8af25b21e2e6c8f4c1f07e070f9fabc9c8a337784e6d7436cc4aa8d7674700c61030b0c23e4b9c7d3c909e5db0 | 5 | SHA512 (exim-html-4.90.1.tar.xz) = 736f358c081e51ec542f18f04e6e18ff938b5b14336777798ad3607a7a1962d522a710e772af014d3c3f88ded9ade4d505f480439305abffd1b4c1bde342ea1a | |
6 | Size (exim-html-4.89.tar.bz2) = 480222 bytes | 6 | Size (exim-html-4.90.1.tar.xz) = 478876 bytes |