system environment/daemons

postfix - Postfix Mail Transport Agent

Website: http://www.postfix.org
License: IBM and GPLv2+
Vendor: Django
Description:
Postfix is a Mail Transport Agent (MTA), supporting LDAP, SMTP AUTH (SASL),
TLS

Packages

postfix-2.11.10-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2017-06-18):
- Security: Berkeley DB 2 and later try to read settings from
  a file DB_CONFIG in the current directory.  This undocumented
  feature may introduce undisclosed vulnerabilities resulting
  in privilege escalation with Postfix set-gid programs
  (postdrop, postqueue) before they chdir to the Postfix queue
  directory, and with the postmap and postalias commands
  epending on whether the user's current directory is writable
  by other users. This fix does not change Postfix behavior
  for Berkeley DB < 3, but reduces file create performance
  for Berkeley DB 3 .. 4.6.  File: util/dict_db.c.
postfix-2.11.8-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2016-06-27):
- Bugfix (introduced: Postfix 2.6): the Milter SMFIR_CHGFROM
  (replace sender) request lost the sender_bcc_maps address.
  Fixed by moving some record keeping to the sender output
  function.  Files: cleanup/cleanup_envelope.c,
  cleanup/cleanup_addr.c, cleanup/cleanup_milter.c,
  cleanup/cleanup.h, regression tests.
- Bugfix (introduced: Postfix 2.6): the "bad filetype"
  header_checks pattern falsely rejected Content-Mumble headers
  with ``name="example"; x-apple-part-url="example.com"''.
  Fixed by respecting the ";" separator between content
  attribute values.  Reported by Cedric Knight.  File:
  proto/header_checks.
- Portability: OpenBSD 6.0. Files: makedefs, util/sys_defs.h.
postfix-2.11.7-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2016-01-04):
- Workaround: disable DNSSEC support for AIX 7x and earlier.
  The AIX 6/7 resolver(5) API defines RES_USE_DNSSEC without
  defining the "ad" bit.  Viktor Dukhovni.  Files: makedefs,
  proto/INSTALL.html, dns/dns.h.
- Bugfix (introduced: 20120531-617): the Postfix SMTP server
  used a larger-than-1 VSTREAM buffer to read the HAProxy
  connection hand-off information. This broke TLS wrappermode,
  as the TLS helo packet would end up in the plaintext VSTREAM
  buffer. Reported by Lukas Erlacher.  File: smtpd/smtpd_haproxy.c.
- Bugfix (introduced: 20090216-24): incorrect postmulti error
  message. Reported by Patrik Koetter. Fix by Viktor Dukhovni.
  File: postmulti/postmulti.c.
- Workaround: don't create a new instance when the template
  main.cf and master.cf files are missing, as happens on
  Debian-like systems. Viktor Dukhovni. File: conf/postmulti-script.
- Bugfix (introduced: 19970309, fixed 20150421 in development
  release): reset errno before calling readdir(), in order
  to distinguish between an end-of-directory and an error
  condition. File: scandir.c.
- Bugfix (introduced: 20040124): Milter client panic while
  adding a header, because the PREPEND action used the same
  output function for header_checks and body_checks.  Viktor
  Dukhovni and Wietse. File: cleanup/cleanup_message.c.
- Bugfix (introduced: 20031128): xtext_unquote() did not
  propagate error reports from xtext_unquote_append(), causing
  the decoder to return partial ouput, instead of rejecting
  malformed input. Fix by Krzysztof Wojta.  File: globa
postfix-2.11.6-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2015-10-07):
- Support for Linux 4.*, and some simplification for future
  makedefs files. Files: makedefs, util/sys_defs.h.
- Security: opportunistic TLS by default uses "medium" or
  stronger ciphers instead of "export" or stronger. See the
  RELEASE_NOTES file for how to get the old settings back.
  Files: global/mail_params.h, proto/TLS_README.html,
  proto/postconf.proto, and files derived from those.
- Security: Postfix TLS support by default no longer uses
  SSLv2 or SSLv3.  See the RELEASE_NOTES file for how to get
  the old settings back. Files: global/mail_params.h,
  proto/postconf.proto, and files derived from those.
postfix-2.11.5-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2015-05-05):
- Portability: FreeBSD10 support. Files: makedefs, util/sys_defs.h.
  Incompatibility: specifying "make makefiles" with "CC=command"
  will no longer override the default WARN setting.
- Bitrot: prepare for future changes in OpenSSL API. Viktor
  Dukhovni. File: tls_dane.c.
- Bugfix (introduced: Postfix 2.6): sender_dependent_relayhost_maps
  ignored the relayhost setting in the case of a DUNNO lookup
  result.  It would use the recipient domain instead.  Viktor
  Dukhovni. Wietse took the pieces of code that enforce the
  precedence of a sender-dependent relayhost, the global
  relayhost, and the recipient domain, and put that code
  together in once place so that it is easier to maintain.
  File: trivial-rewrite/resolve.c.
postfix-2.11.3-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2014-10-30):
- Fix for configurations that prepend message headers with Postfix access maps, policy servers or Milter applications. Postfix now hides its own Received: header from Milters and exposes prepended headers to Milters, regardless of the mechanism used to prepend a header. This fix reverts a partial solution that was released on October 13, 2014, and replaces it with a complete solution.
postfix-2.11.1-1.el7.centos.x86_64 [2.5 MiB] Changelog by Django (2014-09-24):
* Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 2:2.10.1-6
- Mass rebuild 2014-01-24

Listing created by Repoview-0.6.6-4.el7