pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: [pkgsrc-2008Q2] pkgsrc/mail/postfix

Module Name:    pkgsrc
Committed By:   rtr
Date:           Mon Aug 18 09:46:08 UTC 2008

Modified Files:
        pkgsrc/mail/postfix [pkgsrc-2008Q2]: Makefile distinfo

Log Message:
pullup ticket #2495 - requested by martti
postfix: update package for security fixes

revisions pulled up:
pkgsrc/mail/postfix/Makefile    1.218
pkgsrc/mail/postfix/distinfo    1.118

   Module Name:    pkgsrc
   Committed By:   martti
   Date:           Mon Aug 18 07:13:41 UTC 2008

   Modified Files:
           pkgsrc/mail/postfix: Makefile distinfo

   Log Message:
   Updated mail/postfix to 2.5.4


           Bugfix: dangling pointer in vstring_sprintf_prepend().
           File: util/vstring.c.


           Security: some systems have changed their link() semantics,
           and will hardlink a symlink, contrary to POSIX and XPG4.
           Sebastian Krahmer, SuSE. File: util/safe_open.c.

           The solution introduces the following incompatible change:
           when the target of mail delivery is a symlink, the parent
           directory of that symlink must now be writable by root only
           (in addition to the already existing requirement that the
           symlink itself is owned by root).  This change will break
           legitimate configurations that deliver mail to a symbolic
           link in a directory with less restrictive permissions.

To generate a diff of this commit:
cvs rdiff -r1.216 -r1.216.6.1 pkgsrc/mail/postfix/Makefile
cvs rdiff -r1.116 -r1.116.6.1 pkgsrc/mail/postfix/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index