1
exim4 (4.73~rc1-1ubuntu1) natty; urgency=low
3
* Merge from debian unstable. Remaining changes: (LP: #697934)
4
- debian/patches/71_exiq_grep_error_on_messages_without_size.patch:
5
+ Improve handling of broken messages when "exim4 -bp" (mailq)
6
reports lines without size info.
7
- debian/control: Don't declare a Provides: default-mta; in Ubuntu,
8
we want postfix to be the default.
9
- debian/{control,rules}: Add and enable hardened build for PIE.
11
* Drop B-D on libmysqlclient15-dev, resolved in Debian.
13
-- Artur Rona <ari-tczew@ubuntu.com> Tue, 28 Dec 2010 22:20:17 +0100
15
exim4 (4.73~rc1-1) experimental; urgency=low
17
* New upstream release candidate.
18
* Drop included patches. 80_4.73rc1_*, 40_dkimnotinpaniclog.diff.
19
* Update 31_eximmanpage.dpatch.
20
* exim4 now uses INSTREAM (added in clamav 0.95) instead of STREAM when
21
talking to clamav. exim4-daemon-heavy therefore Breaks: clamav-daemon
25
+ Drop exim4-config's conflicts with bash (<< 2.05). This was relevant
27
+ Drop exim4-daemon-* dependency on exim4-base (>> 4.71-2). This one is
28
superfluous because of of the dependency on
29
exim4-base (>= ${Upstream-Version}).
30
+ exim4-config breaks instead of conflicts with pre-DKIM (i.e. << 4.69.1)
32
+ exim4-base breaks instead of conflicts with <<${Upstream-Version} daemon
34
* Add Vcs-Svn and Vcs-Browser fields to debian/control.
35
* Build depend on libmysqlclient-dev | libmysqlclient15-dev instead of
36
libmysqlclient15-dev. libmysqlclient-dev is not a virtual package
37
anymore. Closes: #590218
38
* Use db_settitle unconditionally, even etch supports this. Drop unneeded
39
lintian override exim4-config: settitle-requires-versioned-depends.
41
-- Andreas Metzler <ametzler@debian.org> Mon, 27 Dec 2010 19:48:19 +0100
43
exim4 (4.72-3) unstable; urgency=low
45
* [README.Debian*] Correct command for manual paniclog rotation. (Thanks,
46
Jörg Sommer) Closes: #602188
47
* 67_unnecessaryCopt.diff: Do not use exim's -C option in utility scripts.
48
This would not work with ALT_CONFIG_PREFIX.
49
* Pull changes related to fixing CVE-2010-4345 from exim 4.73 rc1.
51
+ 1_cfile_norw_eximuid: Don't allow a configure file which is writeable by
52
the Exim user or group.
53
+ 2_permcheck_configurefile: Check configure file permissions even for
54
non-default files if still privileged.
55
+ 3_remove_ALT_CONFIG_ROOT_ONLY: Remove ALT_CONFIG_ROOT_ONLY build option,
56
effectively making it always true.
57
+ 4_FD_CLOEXEC: Set FD_CLOEXEC on SMTP sockets after forking in the
58
daemon, to ensure that rogue child processes cannot use them.
59
+ 5_TRUSTED_CONFIG_LIST: Add TRUSTED_CONFIG_LIST compile option.
60
+ 6_nonroot_system_filter_user: If the system filter needs to be run as
61
root, let that be explicitly configured. The default is now the Exim
63
+ 7_filter_D_option: Add a (compiletime) whitelist of acceptable values
65
+ 8_updatedocumentation: Update documentation to reflect the changes.
66
* Build with WHITELIST_D_MACROS=OUTGOING. Post patch 7_filter_D_option exim
67
will not regain root privileges (usually necessary for local delivery) if
68
the -D option was used. Macro identifiers listed in WHITELIST_D_MACROS are
69
exempted from this restriction. mailscanner (4.79.11-2.2) uses -DOUTGOING.
70
* Build with TRUSTED_CONFIG_LIST=/etc/exim4/trusted_configs. Post patch
71
3_remove_ALT_CONFIG_ROOT_ONLY exim will not re-gain root privileges
72
(usually necessary for local delivery) if the -C option was used. This
73
makes it impossible to start a fully functional damon with an alternate
74
configuration file. /etc/exim4/trusted_configs (can) contain a list of
75
filenames (one per line, full path given) to which this restriction does
78
-- Andreas Metzler <ametzler@debian.org> Sun, 26 Dec 2010 15:13:08 +0100
1
80
exim4 (4.72-2ubuntu1) natty; urgency=low
3
82
* Merge from debian unstable. Remaining changes: (LP: #671615)