PaulHowarth/Blog/2018-07-02

Monday 2nd July 2018

Fedora Project

  • Updated perl-Mail-Mbox-MessageParser to 1.5106 in Rawhide:

    • Add standard tests
    • Detect mailboxes that contain a mix of newline types; complain about it, but also allow the force option to continue processing

    • Avoid OO interface to File::Temp, which in some versions and on some operating systems, deletes the file when it is closed (CPAN RT#103835)

    • Fix compatibility issue with newer versions of perl, which remove "." from @INC (CPAN RT#121466)

  • Updated perl-Modern-Perl to 1.20180701 in Rawhide:

    • Added support for Perl 5.26 and 5.28

Local Packages

  • Updated dovecot (2.3):

    • Updated dovecot to 2.3.2

      • old-stats plugin: Don't temporarily enable PR_SET_DUMPABLE while opening /proc/self/io (this may still cause security problems if the process is ptrace()d at the same time); instead, open it while still running as root

      • doveadm: Added mailbox cache decision and remove commands; see doveadm-mailbox(1) man page for details

      • doveadm: Added rebuild attachments command for rebuilding $HasAttachment or $HasNoAttachment flags for matching mails; see doveadm-rebuild(1) man page for details

      • cassandra: Use fallback_consistency on more types of errors

      • lmtp proxy: Support outgoing SSL/TLS connections

      • lmtp: Add lmtp_rawlog_dir and lmtp_proxy_rawlog_dir settings

      • submission: Add support for rawlog_dir

      • submission: Add submission_client_workarounds setting

      • lua auth: Add password_verify() function and additional fields in auth request

      • doveadm-server: TCP connections are hanging when there is a lot of network output; this especially caused hangs in dsync-replication

      • Using multiple type=shared mdbox namespaces crashed

      • mail_fsync setting was ignored; it was always set to "optimized"

      • lua auth: Fix potential crash at deinit
      • SSL/TLS servers may have crashed if client disconnected during handshake
      • SSL/TLS servers: Don't send extraneous certificates to client when alt certs are used

      • lda, lmtp: Return-Path header without '<' may have assert-crashed

      • lda, lmtp: Unencoded UTF-8 in email address headers may assert-crash

      • lda: -f parameter didn't allow empty/null/domainless address

      • lmtp, submission: Message size limit was hard-coded to 40 MB; exceeding it caused the connection to get dropped during transfer

      • lmtp: Fix potential crash when delivery fails at DATA stage

      • lmtp: login_greeting setting was ignored

      • Fix to work with OpenSSL v1.0.2f
      • systemd unit restrictions were too strict by default
      • Fix potential crashes when a lot of log output was produced

      • SMTP client may have assert-crashed when sending mail

      • IMAP COMPRESS: Send "end of compression" marker when disconnecting

      • cassandra: Fix consistency=quorum to work

      • dsync: Lock file generation failed if home directory didn't exist

      • Snippet generation for HTML mails didn't ignore &entities inside blockquotes, producing strange looking snippets

      • imapc: Fix assert-crash if getting disconnected and after reconnection all mails in the selected mailbox are gone

      • pop3c: Handle unexpected server disconnections without assert-crash

      • fts: Fixes to indexing mails via virtual mailboxes

      • fts: If mails contained NUL characters, the text around it wasn't indexed

      • Obsolete dovecot.index.cache offsets were sometimes used; trying to fetch a field that was just added to cache file may not have always found it

    • I had to add a patch to fix a crash in the test suite on i686 (https://github.com/dovecot/core/pull/88)

    • Updated pigeonhole to 0.5.2

      • Implement plugin for the a vendor-defined IMAP capability called "FILTER=SIEVE"; it adds the ability to manually invoke Sieve filtering in IMAP (more information can be found in doc/plugins/imap_filter_sieve.txt)

      • The Sieve address test caused an assertion panic for invalid addresses with UTF-8 codepoints in the localpart; fixed by properly detecting invalid addresses with UTF-8 codepoints in the localpart and skipping these like other invalid addresses while iterating addresses for the address test
      • Make the length of the subject header for the vacation response configurable and enforce the limit in UTF-8 codepoints rather than bytes
      • The subject header for a vacation response was statically truncated to 256 bytes, which is too limited for multi-byte UTF-8 characters

      • Sieve editheader extension: Fix assertion panic occurring when it is used to manipulate a message header with a very large header field

      • Properly abort execution of the sieve_discard script upon error; before, the LDA Sieve plugin attempted to execute the sieve_discard script when an error occurs, which can lead to the message being lost

      • Fix the interaction between quota and the sieve_discard script; when quota was used together with a sieve_discard script, the message delivery did not bounce when the quota was exceeded

  • Updated perl-Mail-Mbox-MessageParser to 1.5106 as per the Fedora version

  • Rebuilt perl-MCE for Perl 5.28 in Rawhide

  • Updated sendmail (8.15.2) to use SSL_CTX_use_certificate_chain_file() to handle intermediate certificates passed additionally in confSERVER_CERT (Bug #1565341)

Recent