-
Committer:
Package Import Robot
-
Author(s):
Yaroslav Halchenko
-
Date:
2014-06-22 11:56:54 UTC
-
Revision ID:
package-import@ubuntu.com-20140622115654-cvop5syf2vfmue0e
Tags: 0.8.6-3wheezy3
* Use anchored failregex for filters to avoid possible DoS. Manually
picked up from the current status of 0.8 branch (as of
0.8.13-29-g09b2016):
- CVE-2013-7176: postfix.conf - anchored on the front, expects
"postfix/smtpd" prefix in the log line
- CVE-2013-7177: cyrus-imap.conf - anchored on the front, and
refactored to have a single failregex
- couriersmtp.conf - anchored on both sides
- exim.conf - front-anchored versions picked up from exim.conf
and exim-spam.conf
- lighttpd-fastcgi.conf - front-anchored picked up from suhosin.conf