Hello community, here is the log from the commit of package exim for openSUSE:Factory checked in at 2020-01-07 23:53:26 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/exim (Old) and /work/SRC/openSUSE:Factory/.exim.new.6675 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "exim" Tue Jan 7 23:53:26 2020 rev:56 rq:761361 version:4.93.0.4 Changes: -------- --- /work/SRC/openSUSE:Factory/exim/exim.changes 2020-01-02 14:43:02.472952099 +0100 +++ /work/SRC/openSUSE:Factory/.exim.new.6675/exim.changes 2020-01-07 23:53:57.256050023 +0100 @@ -1,0 +2,58 @@ +Tue Jan 7 07:50:35 CET 2020 - [email protected] + +- update to exim 4.93.0.4 (+fixes release) + * Avoid costly startup code when not strictly needed. This reduces time + for some exim process initialisations. It does mean that the logging + of TLS configuration problems is only done for the daemon startup. + * Early-pipelining support code is now included unless disabled in Makefile. + * DKIM verification defaults no long accept sha1 hashes, to conform to + RFC 8301. They can still be enabled, using the dkim_verify_hashes main + option. + * Support CHUNKING from an smtp transport using a transport_filter, when + DKIM signing is being done. Previously a transport_filter would always + disable CHUNKING, falling back to traditional DATA. + * Regard command-line receipients as tainted. + * Bug 340: Remove the daemon pid file on exit, whe due to SIGTERM. + * Bug 2489: Fix crash in the "pam" expansion condition. It seems that the + PAM library frees one of the arguments given to it, despite the + documentation. Therefore a plain malloc must be used. + * Bug 2491: Use tainted buffers for the transport smtp context. Previously + on-stack buffers were used, resulting in a taint trap when DSN information + copied from a received message was written into the buffer. + * Bug 2493: Harden ARC verify against Outlook, whick has been seen to mix + the ordering of its ARC headers. This caused a crash. + * Bug 2492: Use tainted memory for retry record when needed. Previously when + a new record was being constructed with information from the peer, a trap + was taken. + * Bug 2494: Unset the default for dmarc_tld_file. Previously a naiive + installation would get error messages from DMARC verify, when it hit the + nonexistent file indicated by the default. Distros wanting DMARC enabled + should both provide the file and set the option. + Also enforce no DMARC verification for command-line sourced messages. + * Fix an uninitialised flag in early-pipelining. Previously connections + could, depending on the platform, hang at the STARTTLS response. + * Bug 2498: Reset a counter used for ARC verify before handling another + message on a connection. Previously if one message had ARC headers and + the following one did not, a crash could result when adding an + Authentication-Results: header. + * Bug 2500: Rewind some of the common-coding in string handling between the + Exim main code and Exim-related utities. The introduction of taint + tracking also did many adjustments to string handling. Since then, eximon + frequently terminated with an assert failure. + * When PIPELINING, synch after every hundred or so RCPT commands sent and + check for 452 responses. This slightly helps the inefficieny of doing + a large alias-expansion into a recipient-limited target. The max_rcpt + transport option still applies (and at the current default, will override + the new feature). The check is done for either cause of synch, and forces + a fast-retry of all 452'd recipients using a new MAIL FROM on the same + connection. The new facility is not tunable at this time. + * Fix the variables set by the gsasl authenticator. Previously a pointer to + library live data was being used, so the results became garbage. Make + copies while it is still usable. + * Logging: when the deliver_time selector ise set, include the DT= field + on delivery deferred (==) and failed (**) lines (if a delivery was + attemtped). Previously it was only on completion (=>) lines. + * Authentication: the gsasl driver not provides the $authN variables in time + for the expansion of the server_scram_iter and server_scram_salt options. + +------------------------------------------------------------------- Old: ---- exim-4.93.tar.bz2 exim-4.93.tar.bz2.asc New: ---- exim-4.93.0.4.tar.bz2 exim-4.93.0.4.tar.bz2.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ exim.spec ++++++ --- /var/tmp/diff_new_pack.nbQeqj/_old 2020-01-07 23:53:58.132050478 +0100 +++ /var/tmp/diff_new_pack.nbQeqj/_new 2020-01-07 23:53:58.136050479 +0100 @@ -72,7 +72,7 @@ %endif Requires(pre): fileutils textutils %endif -Version: 4.93 +Version: 4.93.0.4 Release: 0 %if %{with_mysql} BuildRequires: mysql-devel @@ -87,8 +87,8 @@ License: GPL-2.0-or-later Group: Productivity/Networking/Email/Servers BuildRoot: %{_tmppath}/%{name}-%{version}-build -Source: http://ftp.exim.org/pub/exim/exim4/exim-%{version}.tar.bz2 -Source3: http://ftp.exim.org/pub/exim/exim4/exim-%{version}.tar.bz2.asc +Source: http://ftp.exim.org/pub/exim/exim4/fixes/exim-%{version}.tar.bz2 +Source3: http://ftp.exim.org/pub/exim/exim4/fixes/exim-%{version}.tar.bz2.asc # http://ftp.exim.org/pub/exim/Exim-Maintainers-Keyring.asc Source4: exim.keyring Source1: sysconfig.exim ++++++ exim-4.93.tar.bz2 -> exim-4.93.0.4.tar.bz2 ++++++ ++++ 2093 lines of diff (skipped)
