Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package OpenSMTPD for openSUSE:Factory checked in at 2026-05-14 21:45:45 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/OpenSMTPD (Old) and /work/SRC/openSUSE:Factory/.OpenSMTPD.new.1966 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "OpenSMTPD" Thu May 14 21:45:45 2026 rev:3 rq:1353193 version:7.8.0p1 Changes: -------- --- /work/SRC/openSUSE:Factory/OpenSMTPD/OpenSMTPD.changes 2025-11-04 18:43:00.927090111 +0100 +++ /work/SRC/openSUSE:Factory/.OpenSMTPD.new.1966/OpenSMTPD.changes 2026-05-14 21:45:46.853564904 +0200 @@ -1,0 +2,10 @@ +Thu May 14 14:07:28 UTC 2026 - Mislav Bozicevic <[email protected]> + +- Updated to version 7.8.0p1: (boo#1263040) + - table_proc: ensure the request does not contain newlines +- Removed OpenSMTPD-reduced-permissions-on-SMTPD_SOCKET.patch to + support use case described in boo#1263040 +- Further hardened the systemd service configuration by switching + RestrictAddressFamilies from blocklist to allowlist + +------------------------------------------------------------------- Old: ---- OpenSMTPD-reduced-permissions-on-SMTPD_SOCKET.patch opensmtpd-7.8.0p0.tar.gz New: ---- opensmtpd-7.8.0p1.tar.gz ----------(Old B)---------- Old: - table_proc: ensure the request does not contain newlines - Removed OpenSMTPD-reduced-permissions-on-SMTPD_SOCKET.patch to support use case described in boo#1263040 ----------(Old E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ OpenSMTPD.spec ++++++ --- /var/tmp/diff_new_pack.49GHKY/_old 2026-05-14 21:45:47.973610820 +0200 +++ /var/tmp/diff_new_pack.49GHKY/_new 2026-05-14 21:45:47.981611148 +0200 @@ -1,7 +1,7 @@ # # spec file for package OpenSMTPD # -# Copyright (c) 2025 SUSE LLC and contributors +# Copyright (c) 2026 SUSE LLC and contributors # Copyright (c) 2025 SUSE Software Solutions # # All modifications and additions to the file contributed by third parties @@ -19,7 +19,7 @@ Name: OpenSMTPD %global name_lowercase %(echo -n "%{name}" | tr '[:upper:]' '[:lower:]') -Version: 7.8.0p0 +Version: 7.8.0p1 Release: 0 Summary: A free implementation of the server-side SMTP protocol License: BSD-2-Clause AND BSD-3-Clause AND BSD-4-Clause AND ISC @@ -28,8 +28,6 @@ Source: https://www.opensmtpd.org/archives/opensmtpd-%{version}.tar.gz Source1: %{name}-user.conf Source2: %{name}.service -# PATCH-FIX-OPENSUSE OpenSMTPD-reduced-permissions-on-SMTPD_SOCKET.patch boo#1247781 -Patch1: OpenSMTPD-reduced-permissions-on-SMTPD_SOCKET.patch BuildRequires: systemd-rpm-macros BuildRequires: sysuser-tools %sysusers_requires @@ -61,7 +59,6 @@ %prep %setup -q -n %{name_lowercase}-%{version} ./bootstrap -%patch -P 1 -p1 %build %sysusers_generate_pre %{SOURCE1} %{name} %{name}-user.conf ++++++ OpenSMTPD.service ++++++ --- /var/tmp/diff_new_pack.49GHKY/_old 2026-05-14 21:45:48.081615247 +0200 +++ /var/tmp/diff_new_pack.49GHKY/_new 2026-05-14 21:45:48.089615575 +0200 @@ -57,23 +57,7 @@ CapabilityBoundingSet=~CAP_SYS_TIME CapabilityBoundingSet=~CAP_SYS_TTY_CONFIG CapabilityBoundingSet=~CAP_WAKE_ALARM -RestrictAddressFamilies=~AF_APPLETALK -RestrictAddressFamilies=~AF_AX25 -RestrictAddressFamilies=~AF_BLUETOOTH -RestrictAddressFamilies=~AF_CAN -RestrictAddressFamilies=~AF_DECnet -RestrictAddressFamilies=~AF_IB -RestrictAddressFamilies=~AF_IPX -RestrictAddressFamilies=~AF_KCM -RestrictAddressFamilies=~AF_LLC -RestrictAddressFamilies=~AF_MPLS -RestrictAddressFamilies=~AF_PACKET -RestrictAddressFamilies=~AF_PPPOX -RestrictAddressFamilies=~AF_RDS -RestrictAddressFamilies=~AF_TIPC -RestrictAddressFamilies=~AF_VSOCK -RestrictAddressFamilies=~AF_X25 -RestrictAddressFamilies=~AF_XDP +RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6 AF_NETLINK RestrictNamespaces=~cgroup RestrictNamespaces=~ipc RestrictNamespaces=~mnt ++++++ opensmtpd-7.8.0p0.tar.gz -> opensmtpd-7.8.0p1.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/CHANGES.md new/opensmtpd-7.8.0p1/CHANGES.md --- old/opensmtpd-7.8.0p0/CHANGES.md 2025-10-30 19:05:53.558094418 +0100 +++ new/opensmtpd-7.8.0p1/CHANGES.md 2026-03-26 19:37:33.314303340 +0100 @@ -1,9 +1,14 @@ +# Release 7.8.0p1 (2026-03-27) + + - table_proc: ensure the request does not contain newlines + # Release 7.8.0p0 (2025-10-30) - Don't reject single character AUTH PLAIN passwords. - Fix address family typo (PF_INET->PF_INET6). - Various documentation improvements. - Removed support for world-writable mail spools. + - Updated contrib mail.local and lockspool. - Don't die if garbage is being sent on the local socket. This release includes the OpenBSD errata 005 which fixes CVE-2025-62875. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/Makefile.in new/opensmtpd-7.8.0p1/Makefile.in --- old/opensmtpd-7.8.0p0/Makefile.in 2025-10-30 19:09:47.977242986 +0100 +++ new/opensmtpd-7.8.0p1/Makefile.in 2026-03-26 19:39:45.613586451 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/README.md new/opensmtpd-7.8.0p1/README.md --- old/opensmtpd-7.8.0p0/README.md 2025-10-30 19:06:49.658073660 +0100 +++ new/opensmtpd-7.8.0p1/README.md 2026-03-26 19:38:10.873590184 +0100 @@ -1,6 +1,6 @@ # OpenSMTPD -[](https://github.com/OpenSMTPD/OpenSMTPD/releases/tag/7.8.0p0) +[](https://github.com/OpenSMTPD/OpenSMTPD/releases/tag/7.8.0p1) [](https://scan.coverity.com/projects/opensmtpd-opensmtpd) [](https://repology.org/project/opensmtpd/versions) [](https://www.isc.org/licenses/) @@ -68,6 +68,10 @@ yum install opensmtpd +### openSUSE Tumbleweed + + zypper install OpenSMTPD + ### macOS OpenSMTPD is available from [MacPorts](https://www.macports.org): diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/aclocal.m4 new/opensmtpd-7.8.0p1/aclocal.m4 --- old/opensmtpd-7.8.0p0/aclocal.m4 2025-10-30 19:09:46.307233945 +0100 +++ new/opensmtpd-7.8.0p1/aclocal.m4 2026-03-26 19:39:14.823589934 +0100 @@ -1,4 +1,4 @@ -# generated automatically by aclocal 1.18 -*- Autoconf -*- +# generated automatically by aclocal 1.18.1 -*- Autoconf -*- # Copyright (C) 1996-2025 Free Software Foundation, Inc. @@ -311,7 +311,7 @@ [am__api_version='1.18' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. -m4_if([$1], [1.18], [], +m4_if([$1], [1.18.1], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) @@ -327,7 +327,7 @@ # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], -[AM_AUTOMAKE_VERSION([1.18])dnl +[AM_AUTOMAKE_VERSION([1.18.1])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/configure new/opensmtpd-7.8.0p1/configure --- old/opensmtpd-7.8.0p0/configure 2025-10-30 19:09:47.027258237 +0100 +++ new/opensmtpd-7.8.0p1/configure 2026-03-26 19:39:16.463646827 +0100 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.72 for OpenSMTPD-portable 7.8.0p0. +# Generated by GNU Autoconf 2.72 for OpenSMTPD-portable 7.8.0p1. # # Report bugs to <[email protected]>. # @@ -604,8 +604,8 @@ # Identity of this package. PACKAGE_NAME='OpenSMTPD-portable' PACKAGE_TARNAME='opensmtpd' -PACKAGE_VERSION='7.8.0p0' -PACKAGE_STRING='OpenSMTPD-portable 7.8.0p0' +PACKAGE_VERSION='7.8.0p1' +PACKAGE_STRING='OpenSMTPD-portable 7.8.0p1' PACKAGE_BUGREPORT='[email protected]' PACKAGE_URL='https://www.opensmtpd.org' @@ -1368,7 +1368,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -'configure' configures OpenSMTPD-portable 7.8.0p0 to adapt to many kinds of systems. +'configure' configures OpenSMTPD-portable 7.8.0p1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1439,7 +1439,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of OpenSMTPD-portable 7.8.0p0:";; + short | recursive ) echo "Configuration of OpenSMTPD-portable 7.8.0p1:";; esac cat <<\_ACEOF @@ -1573,7 +1573,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -OpenSMTPD-portable configure 7.8.0p0 +OpenSMTPD-portable configure 7.8.0p1 generated by GNU Autoconf 2.72 Copyright (C) 2023 Free Software Foundation, Inc. @@ -2354,7 +2354,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by OpenSMTPD-portable $as_me 7.8.0p0, which was +It was created by OpenSMTPD-portable $as_me 7.8.0p1, which was generated by GNU Autoconf 2.72. Invocation command line was $ $0$ac_configure_args_raw @@ -3913,7 +3913,7 @@ # Define the identity of the package. PACKAGE='opensmtpd' - VERSION='7.8.0p0' + VERSION='7.8.0p1' printf "%s\n" "#define PACKAGE \"$PACKAGE\"" >>confdefs.h @@ -14906,7 +14906,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by OpenSMTPD-portable $as_me 7.8.0p0, which was +This file was extended by OpenSMTPD-portable $as_me 7.8.0p1, which was generated by GNU Autoconf 2.72. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -14975,7 +14975,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config='$ac_cs_config_escaped' ac_cs_version="\\ -OpenSMTPD-portable config.status 7.8.0p0 +OpenSMTPD-portable config.status 7.8.0p1 configured by $0, generated by GNU Autoconf 2.72, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/configure.ac new/opensmtpd-7.8.0p1/configure.ac --- old/opensmtpd-7.8.0p0/configure.ac 2025-10-30 19:06:58.287242650 +0100 +++ new/opensmtpd-7.8.0p1/configure.ac 2026-03-26 19:38:20.973593308 +0100 @@ -14,7 +14,7 @@ # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. -AC_INIT([OpenSMTPD-portable], [7.8.0p0], [[email protected]], +AC_INIT([OpenSMTPD-portable], [7.8.0p1], [[email protected]], [opensmtpd], [https://www.opensmtpd.org]) AC_CONFIG_MACRO_DIR([m4]) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/contrib/Makefile.in new/opensmtpd-7.8.0p1/contrib/Makefile.in --- old/opensmtpd-7.8.0p0/contrib/Makefile.in 2025-10-30 19:09:47.987238824 +0100 +++ new/opensmtpd-7.8.0p1/contrib/Makefile.in 2026-03-26 19:39:45.623586039 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/contrib/libexec/Makefile.in new/opensmtpd-7.8.0p1/contrib/libexec/Makefile.in --- old/opensmtpd-7.8.0p0/contrib/libexec/Makefile.in 2025-10-30 19:09:48.007239778 +0100 +++ new/opensmtpd-7.8.0p1/contrib/libexec/Makefile.in 2026-03-26 19:39:45.633587881 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/contrib/libexec/encrypt/Makefile.in new/opensmtpd-7.8.0p1/contrib/libexec/encrypt/Makefile.in --- old/opensmtpd-7.8.0p0/contrib/libexec/encrypt/Makefile.in 2025-10-30 19:09:48.037227003 +0100 +++ new/opensmtpd-7.8.0p1/contrib/libexec/encrypt/Makefile.in 2026-03-26 19:39:45.653585794 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/contrib/libexec/lockspool/Makefile.in new/opensmtpd-7.8.0p1/contrib/libexec/lockspool/Makefile.in --- old/opensmtpd-7.8.0p0/contrib/libexec/lockspool/Makefile.in 2025-10-30 19:09:48.057229350 +0100 +++ new/opensmtpd-7.8.0p1/contrib/libexec/lockspool/Makefile.in 2026-03-26 19:39:45.673585350 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/contrib/libexec/mail.local/Makefile.in new/opensmtpd-7.8.0p1/contrib/libexec/mail.local/Makefile.in --- old/opensmtpd-7.8.0p0/contrib/libexec/mail.local/Makefile.in 2025-10-30 19:09:48.087259756 +0100 +++ new/opensmtpd-7.8.0p1/contrib/libexec/mail.local/Makefile.in 2026-03-26 19:39:45.693581851 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/Makefile.in new/opensmtpd-7.8.0p1/mk/Makefile.in --- old/opensmtpd-7.8.0p0/mk/Makefile.in 2025-10-30 19:09:48.107247986 +0100 +++ new/opensmtpd-7.8.0p1/mk/Makefile.in 2026-03-26 19:39:45.713589412 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/mail/Makefile.in new/opensmtpd-7.8.0p1/mk/mail/Makefile.in --- old/opensmtpd-7.8.0p0/mk/mail/Makefile.in 2025-10-30 19:09:48.117261648 +0100 +++ new/opensmtpd-7.8.0p1/mk/mail/Makefile.in 2026-03-26 19:39:45.723586896 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/mail/mail.lmtp/Makefile.in new/opensmtpd-7.8.0p1/mk/mail/mail.lmtp/Makefile.in --- old/opensmtpd-7.8.0p0/mk/mail/mail.lmtp/Makefile.in 2025-10-30 19:09:48.147308595 +0100 +++ new/opensmtpd-7.8.0p1/mk/mail/mail.lmtp/Makefile.in 2026-03-26 19:39:45.743574971 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/mail/mail.maildir/Makefile.in new/opensmtpd-7.8.0p1/mk/mail/mail.maildir/Makefile.in --- old/opensmtpd-7.8.0p0/mk/mail/mail.maildir/Makefile.in 2025-10-30 19:09:48.217336781 +0100 +++ new/opensmtpd-7.8.0p1/mk/mail/mail.maildir/Makefile.in 2026-03-26 19:39:45.763585047 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/mail/mail.mboxfile/Makefile.in new/opensmtpd-7.8.0p1/mk/mail/mail.mboxfile/Makefile.in --- old/opensmtpd-7.8.0p0/mk/mail/mail.mboxfile/Makefile.in 2025-10-30 19:09:48.307265683 +0100 +++ new/opensmtpd-7.8.0p1/mk/mail/mail.mboxfile/Makefile.in 2026-03-26 19:39:45.783589022 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/mail/mail.mda/Makefile.in new/opensmtpd-7.8.0p1/mk/mail/mail.mda/Makefile.in --- old/opensmtpd-7.8.0p0/mk/mail/mail.mda/Makefile.in 2025-10-30 19:09:48.367229482 +0100 +++ new/opensmtpd-7.8.0p1/mk/mail/mail.mda/Makefile.in 2026-03-26 19:39:45.803584570 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/smtp/Makefile.in new/opensmtpd-7.8.0p1/mk/smtp/Makefile.in --- old/opensmtpd-7.8.0p0/mk/smtp/Makefile.in 2025-10-30 19:09:48.387245164 +0100 +++ new/opensmtpd-7.8.0p1/mk/smtp/Makefile.in 2026-03-26 19:39:45.823584417 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/smtpctl/Makefile.in new/opensmtpd-7.8.0p1/mk/smtpctl/Makefile.in --- old/opensmtpd-7.8.0p0/mk/smtpctl/Makefile.in 2025-10-30 19:09:48.457227614 +0100 +++ new/opensmtpd-7.8.0p1/mk/smtpctl/Makefile.in 2026-03-26 19:39:45.883579760 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/mk/smtpd/Makefile.in new/opensmtpd-7.8.0p1/mk/smtpd/Makefile.in --- old/opensmtpd-7.8.0p0/mk/smtpd/Makefile.in 2025-10-30 19:09:48.547255152 +0100 +++ new/opensmtpd-7.8.0p1/mk/smtpd/Makefile.in 2026-03-26 19:39:45.913579595 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/openbsd-compat/Makefile.in new/opensmtpd-7.8.0p1/openbsd-compat/Makefile.in --- old/opensmtpd-7.8.0p0/openbsd-compat/Makefile.in 2025-10-30 19:09:48.587263172 +0100 +++ new/opensmtpd-7.8.0p1/openbsd-compat/Makefile.in 2026-03-26 19:39:45.923581748 +0100 @@ -1,4 +1,4 @@ -# Makefile.in generated by automake 1.18 from Makefile.am. +# Makefile.in generated by automake 1.18.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2025 Free Software Foundation, Inc. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/usr.sbin/smtpd/smtp_session.c new/opensmtpd-7.8.0p1/usr.sbin/smtpd/smtp_session.c --- old/opensmtpd-7.8.0p0/usr.sbin/smtpd/smtp_session.c 2025-07-30 22:26:49.764391744 +0200 +++ new/opensmtpd-7.8.0p1/usr.sbin/smtpd/smtp_session.c 2026-03-26 18:09:54.833595248 +0100 @@ -1975,6 +1975,8 @@ if (user == NULL || user >= buf + len - 2) goto abort; user++; /* skip NUL */ + if (user[strcspn(user, "\r\n")] != '\0') + goto abort; if (strlcpy(s->username, user, sizeof(s->username)) >= sizeof(s->username)) goto abort; @@ -1983,6 +1985,8 @@ if (pass == NULL || pass >= buf + len - 1) goto abort; pass++; /* skip NUL */ + if (pass[strcspn(pass, "\r\n")] != '\0') + goto abort; m_create(p_lka, IMSG_SMTP_AUTHENTICATE, 0, 0, -1); m_add_id(p_lka, s->id); @@ -2025,6 +2029,9 @@ sizeof(s->username) - 1) == -1) goto abort; + if (s->username[strcspn(s->username, "\r\n")] != '\0') + goto abort; + smtp_enter_state(s, STATE_AUTH_PASSWORD); smtp_reply(s, "334 UGFzc3dvcmQ6"); return; @@ -2035,6 +2042,9 @@ sizeof(buf)-1) == -1) goto abort; + if (buf[strcspn(buf, "\r\n")] != '\0') + goto abort; + m_create(p_lka, IMSG_SMTP_AUTHENTICATE, 0, 0, -1); m_add_id(p_lka, s->id); m_add_string(p_lka, s->listener->authtable); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/usr.sbin/smtpd/smtpctl.c new/opensmtpd-7.8.0p1/usr.sbin/smtpd/smtpctl.c --- old/opensmtpd-7.8.0p0/usr.sbin/smtpd/smtpctl.c 2025-07-30 22:26:49.774388971 +0200 +++ new/opensmtpd-7.8.0p1/usr.sbin/smtpd/smtpctl.c 2025-11-11 00:59:49.272512060 +0100 @@ -68,7 +68,12 @@ #endif #ifndef HAVE_DB_API -#define makemap(x, y, z) 1 +int +makemap(int prog_mode, int argc, char *argv[]) +{ + errx(1, "makemap is non-functional when built without `./configure --with-table-db`"); + return 1; +} #endif diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/opensmtpd-7.8.0p0/usr.sbin/smtpd/table_proc.c new/opensmtpd-7.8.0p1/usr.sbin/smtpd/table_proc.c --- old/opensmtpd-7.8.0p0/usr.sbin/smtpd/table_proc.c 2025-07-30 22:26:49.804387855 +0200 +++ new/opensmtpd-7.8.0p1/usr.sbin/smtpd/table_proc.c 2026-03-26 18:09:54.833595248 +0100 @@ -229,6 +229,10 @@ res = "check-result"; } + /* k cannot contain newlines */ + if (k[strcspn(k, "\r\n")] != '\0') + return (-1); + table_proc_send(table, req, s, k); r = table_proc_recv(table, res);
