Change log for opensmtpd package in Ubuntu

134 of 34 results
Published in hirsute-release on 2020-10-23
Published in groovy-release on 2020-05-27
Deleted in groovy-proposed (Reason: moved to Release)
opensmtpd (6.7.1p1-2) unstable; urgency=medium

  * Let gbp-dch parse meta information
  * Drop unneeded call to makemap in postinst. This also fixes a piuparts
    failure

 -- Ryan Kavanagh <email address hidden>  Tue, 26 May 2020 10:46:01 -0400

Available diffs

Superseded in groovy-release on 2020-05-27
Deleted in groovy-proposed on 2020-05-28 (Reason: moved to Release)
opensmtpd (6.7.1p1-1) unstable; urgency=medium

  * New upstream release
    + Drop 11_do_not_install-asr.h.diff, applied upstream
  * No longer ship our own copy of sendmail.8

 -- Ryan Kavanagh <email address hidden>  Thu, 21 May 2020 15:35:19 -0400

Available diffs

Superseded in groovy-release on 2020-05-22
Deleted in groovy-proposed on 2020-05-23 (Reason: moved to Release)
opensmtpd (6.7.0p1-1) unstable; urgency=medium

  * New upstream release
    + Drop 01_typos_smtpd.conf.5.diff (applied upstream)
    + Update copyright file
    + libasr is now part of opensmtpd; drop build-dep on libasr-dev
  * Bump compat level to 13
  * Determine building distribution based on branch name by setting dist=DEP14
    in gbp.conf
  * Set Rules-Requires-Root: binary-targets: we need to install mail.local
    setgid mail.
  * Don't install asr.h, 11_do_not_install-asr.h.diff

 -- Ryan Kavanagh <email address hidden>  Wed, 20 May 2020 11:12:53 -0400

Available diffs

Superseded in groovy-release on 2020-05-21
Deleted in groovy-proposed on 2020-05-22 (Reason: moved to Release)
opensmtpd (6.6.4p1-2) unstable; urgency=medium

  * mail.local must be installed setgid mail to write to mail spool
    (Closes: #959199)

 -- Ryan Kavanagh <email address hidden>  Thu, 30 Apr 2020 15:39:03 -0400

Available diffs

Published in bionic-updates on 2020-03-02
Published in bionic-security on 2020-03-02
opensmtpd (6.0.3p1-1ubuntu0.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Local privilege escalation, remote code execution
    - debian/patches/CVE-2020-8793_8794.patch: An out of bounds read in smtpd
      allows an attacker to inject arbitrary commands into the envelope file
      which are then executed as root.  Separately, missing privilege
      revocation in smtpctl allows arbitrary commands to be run with the
      _smtpq group.
    -CVE-2020-8793
    -CVE-2020-8794

 -- Mike Salvatore <email address hidden>  Wed, 26 Feb 2020 10:40:28 -0500
Published in eoan-updates on 2020-03-02
Published in eoan-security on 2020-03-02
opensmtpd (6.0.3p1-6ubuntu0.2) eoan-security; urgency=medium

  * SECURITY UPDATE: Local privilege escalation, remote code execution
    - debian/patches/CVE-2020-8793_8794.patch: An out of bounds read in smtpd
      allows an attacker to inject arbitrary commands into the envelope file
      which are then executed as root.  Separately, missing privilege
      revocation in smtpctl allows arbitrary commands to be run with the
      _smtpq group.
    -CVE-2020-8793
    -CVE-2020-8794

 -- Mike Salvatore <email address hidden>  Wed, 26 Feb 2020 10:32:06 -0500
Superseded in groovy-release on 2020-05-04
Published in focal-release on 2020-03-01
Deleted in focal-proposed (Reason: moved to Release)
opensmtpd (6.6.4p1-1) unstable; urgency=high

  * New upstream release fixes critical security bug (Closes: #952453).
    Quoting from OpenBSD errata:

        An out of bounds read in smtpd allows an attacker to inject arbitrary
        commands into the envelope file which are then executed as root.

        Separately, missing privilege revocation in smtpctl allows arbitrary
        commands to be run with the _smtpq group.

  * Update copyright file with new copyright holders
  * Remove stale entries from Uploaders field

 -- Ryan Kavanagh <email address hidden>  Mon, 24 Feb 2020 12:20:52 -0500

Available diffs

Superseded in bionic-updates on 2020-03-02
Superseded in bionic-security on 2020-03-02
opensmtpd (6.0.3p1-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Arbitrary command execution as root
    - debian/patches/CVE-2020-7247.patch: Fix a security vulnerability
      discovered by Qualys which can lead to a privileges escalation on mbox
      deliveries and unprivileged code execution on lmtp deliveries, due to a
      logic issue causing a sanity check to be missed.
    - CVE-2020-7247

 -- Mike Salvatore <email address hidden>  Tue, 04 Feb 2020 08:22:49 -0500
Superseded in eoan-updates on 2020-03-02
Superseded in eoan-security on 2020-03-02
opensmtpd (6.0.3p1-6ubuntu0.1) eoan-security; urgency=medium

  * SECURITY UPDATE: Arbitrary command execution as root
    - debian/patches/CVE-2020-7247.patch: Fix a security vulnerability
      discovered by Qualys which can lead to a privileges escalation on mbox
      deliveries and unprivileged code execution on lmtp deliveries, due to a
      logic issue causing a sanity check to be missed.
    - CVE-2020-7247

 -- Mike Salvatore <email address hidden>  Tue, 04 Feb 2020 08:14:11 -0500
Superseded in focal-release on 2020-03-01
Deleted in focal-proposed on 2020-03-03 (Reason: moved to Release)
opensmtpd (6.6.2p1-1) unstable; urgency=high

  * New upstream release fixes the following two security issues:
    + smtpd can crash on opportunistic TLS downgrade, causing a denial of
      service.
    + An incorrect check allows an attacker to trick mbox delivery into
      executing arbitrary commands as root and lmtp delivery into executing
      arbitrary commands as an unprivileged user.
  * Bump standards version to 4.5.0

 -- Ryan Kavanagh <email address hidden>  Tue, 28 Jan 2020 17:27:21 -0500

Available diffs

Superseded in focal-release on 2020-01-29
Deleted in focal-proposed on 2020-01-30 (Reason: moved to Release)
opensmtpd (6.6.1p1-5) unstable; urgency=medium

  * Handle non-zero exit code from hostname during config phase
    (Closes: #948824)

 -- Ryan Kavanagh <email address hidden>  Wed, 22 Jan 2020 12:46:43 -0500

Available diffs

Superseded in focal-release on 2020-01-23
Deleted in focal-proposed on 2020-01-24 (Reason: moved to Release)
opensmtpd (6.6.1p1-4) unstable; urgency=medium

  * Don't use force with dpkg-statoverride in postinst when setting
    smtpctl setgid
  * Make sure to remove statoverride before opensmtpdq group on purge

 -- Ryan Kavanagh <email address hidden>  Sat, 21 Dec 2019 17:52:40 -0500

Available diffs

Superseded in focal-release on 2019-12-22
Deleted in focal-proposed on 2019-12-23 (Reason: moved to Release)
opensmtpd (6.6.1p1-3) unstable; urgency=medium

  * Install smtpctl setgid opensmtpq (Closes: #945910)

 -- Ryan Kavanagh <email address hidden>  Sun, 01 Dec 2019 09:50:39 -0500
Superseded in focal-proposed on 2019-12-01
opensmtpd (6.6.1p1-2) unstable; urgency=medium

  * Allow custom config file paths via defaults file (Closes: #945280)

 -- Ryan Kavanagh <email address hidden>  Sat, 30 Nov 2019 13:48:40 -0500

Available diffs

Superseded in focal-release on 2019-12-13
Deleted in focal-proposed on 2019-12-14 (Reason: moved to Release)
opensmtpd (6.6.1p1-1) unstable; urgency=medium

  * New upstream release (Closes: #944230)
    + Drop 11_ssl_1.1.diff (no longer needed)
    + Update copyright holders
  * Fix bugs in init script. Thanks to Harald Dunkel for patch
  * Bump standards version to 4.4.1
  * We no longer need to override dh_auto_install
  * Fix typos in manpage, 01_typos_smtpd.conf.5.diff
  * This version of opensmtpd breaks opensmtpd-extras < 6.6.0

 -- Ryan Kavanagh <email address hidden>  Tue, 19 Nov 2019 12:06:13 -0500
Superseded in focal-release on 2019-11-21
Deleted in focal-proposed on 2019-11-22 (Reason: moved to Release)
opensmtpd (6.0.3p1-6build1) focal; urgency=medium

  * No-change rebuild for libevent soname changes.

 -- Matthias Klose <email address hidden>  Sat, 19 Oct 2019 19:57:29 +0000
Superseded in focal-release on 2019-10-24
Published in eoan-release on 2019-08-19
Deleted in eoan-proposed (Reason: moved to release)
opensmtpd (6.0.3p1-6) unstable; urgency=medium

  [ Felix Lechner ]
  * Give different software licenses unique names; create missing License
    stanzas. (Closes: #827060)
  * Remove unused lintian overrides for DEP-5 copyright; add quotes to
    multi-word spelling correction.

  [ Ryan Kavanagh ]
  * set debhelper compat to 12
  * Bump standards version to 4.4.0
  * Add missing Pre-Depends on ${misc:Pre-Depends}

 -- Ryan Kavanagh <email address hidden>  Sat, 17 Aug 2019 21:13:01 -0400

Available diffs

Superseded in eoan-release on 2019-08-19
Obsolete in disco-release on 2020-07-14
Deleted in disco-proposed on 2020-07-14 (Reason: moved to release)
opensmtpd (6.0.3p1-5) unstable; urgency=medium

  [ Ondřej Nový ]
  * d/copyright: Use https protocol in Format field

  [ Ryan Kavanagh ]
  * Handle empty strings in postinst (Closes: #921429)
  * Handle missing /etc/mailname (Closes: #913318)
  * Update init script dependencies in comments
  * Bump standards-version to 4.3.0; no changes required
  * Drop check for ancient package version from postinst
  * No longer install documentation for migration from version 5.3 to 5.4

 -- Ryan Kavanagh <email address hidden>  Wed, 06 Feb 2019 10:16:39 -0500

Available diffs

Superseded in disco-release on 2019-02-07
Obsolete in cosmic-release on 2020-07-13
Deleted in cosmic-proposed on 2020-07-13 (Reason: moved to release)
opensmtpd (6.0.3p1-4) unstable; urgency=medium

  * Don't use 'smtpctl stop' in the init script either (Closes: #893367)
  * Bump standards version to 4.1.4

 -- Ryan Kavanagh <email address hidden>  Mon, 30 Apr 2018 12:31:18 -0400
Superseded in cosmic-release on 2018-06-27
Published in bionic-release on 2018-02-07
Deleted in bionic-proposed (Reason: moved to release)
opensmtpd (6.0.3p1-1build1) bionic; urgency=high

  * No change rebuild against openssl1.1.

 -- Dimitri John Ledkov <email address hidden>  Tue, 06 Feb 2018 17:54:49 +0000
Superseded in bionic-release on 2018-02-07
Deleted in bionic-proposed on 2018-02-08 (Reason: moved to release)
opensmtpd (6.0.3p1-1) unstable; urgency=medium

  * New upstream release
  * Updated copyright years
  * Added documentation key to smtpd systemd unit file

 -- Ryan Kavanagh <email address hidden>  Tue, 16 Jan 2018 12:18:40 -0500
Superseded in bionic-proposed on 2018-01-16
opensmtpd (6.0.2p1-3) unstable; urgency=medium

  * Set Git branch in Vcs-Git to debian/sid
  * Bump debhelper build-dependency to >= 11 and compat to 11
  * Drop dh-autoreconf: not needed with dh >= 11
  * Bump standards-version to 4.1.3
  * Added systemd unit file (Closes: #733315, #871311)
  * Change priority to optional
  * Use https for URLs in debian/watch and for Homepage
  * Turn on all hardening options
  * Suggest ca-certificates, which provides /etc/ssl/certs/ca-certificates.crt

 -- Ryan Kavanagh <email address hidden>  Sun, 07 Jan 2018 18:00:29 -0500
Superseded in bionic-release on 2018-01-27
Obsolete in artful-release on 2020-07-10
Deleted in artful-proposed on 2020-07-10 (Reason: moved to release)
opensmtpd (6.0.2p1-2build1) artful; urgency=medium

  * No-change rebuild against libevent-2.1-6

 -- Steve Langasek <email address hidden>  Mon, 31 Jul 2017 02:48:33 +0000
Superseded in artful-release on 2017-08-10
Deleted in artful-proposed on 2017-08-11 (Reason: moved to release)
opensmtpd (6.0.2p1-2) unstable; urgency=medium

  * Let smtpd create its spool directory tree instead of shipping it.
    This fixes errors regarding directories with incorrect owners.
    Thanks to Harald Dunkel for a patch. (Closes: #843978)
  * Actually remove the spool directory on purge.

 -- Ryan Kavanagh <email address hidden>  Tue, 07 Mar 2017 09:33:17 -0500

Available diffs

Superseded in artful-release on 2017-05-06
Obsolete in zesty-release on 2018-06-22
Deleted in zesty-proposed on 2018-06-22 (Reason: moved to release)
opensmtpd (6.0.2p1-1) unstable; urgency=medium

  * Added Brazilian Portuguese debconf templates translation (Closes: #829336)
  * Added missing dependency on ed (Closes: #834280)
  * Switch B-D to libssl1.0-dev while upstream determines how to best
    transition to OpenSSL 1.1 (Closes: #828473)
  * Fix manpage formatting issues (Closes: #832008)
  * Added missing dependency on lsb-base
  * Add missing build-dependency on zlib1g-dev
  * Add lintian override for spelling mistake in copyright text

 -- Ryan Kavanagh <email address hidden>  Fri, 25 Nov 2016 15:51:28 -0500

Available diffs

Superseded in zesty-release on 2016-12-01
Obsolete in yakkety-release on 2018-01-23
Deleted in yakkety-proposed on 2018-01-23 (Reason: moved to release)
opensmtpd (5.9.2p1-1) unstable; urgency=medium

  * New upstream release
    + Drop 04_no_mailq.diff, 11_smtpd.conf.5_typo.diff: no longer needed
  * Make debian-branch for sid debian/sid
  * Updated copyright holders
  * Updated standards-version to 3.9.8
  * Fix bug in getalias() in debian/config
  * Don't install empty /usr/bin in opensmtpd package
  * Update lintian override for missing-license-paragraph-in-dep5-copyright
  * Update our configure options to reflect name changes
  * Install missing links to smtpctl for makemap and newaliases
  * opensmtpd now requires different permissions and ownership for the offline
    queue and purge directories; update these accordingly

 -- Ryan Kavanagh <email address hidden>  Sat, 11 Jun 2016 14:21:51 -0400

Available diffs

Superseded in yakkety-release on 2016-06-14
Published in xenial-release on 2016-02-17
Deleted in xenial-proposed (Reason: moved to release)
opensmtpd (5.7.3p2-1) unstable; urgency=medium

  * New upstream release
    + Fixes segfault when relaying mail (Closes: #813398)
  * Make Vcs-* URLs secure
  * 'fortify' hardening option no longer detects false-positive buffer
    overflow when processing offline queue. Reenabling.
    + Accordingly, drop unneeded hardening-no-fortify overrides.

 -- Ryan Kavanagh <email address hidden>  Thu, 11 Feb 2016 09:09:22 -0500

Available diffs

Superseded in xenial-release on 2016-02-17
Deleted in xenial-proposed on 2016-02-18 (Reason: moved to release)
opensmtpd (5.7.3p1-1) unstable; urgency=high

  * New upstream release
    + Fixes security issues (Closes: #800787, CVE-2015-7687). This point
      release also features fixes to security issues that weren't part of the
      Qualsys audit.
    + No longer have conflicting declarations of fatal in source
      (Closes: #749810)
  * Drop 02_hyphen_as_minus_sign.diff, 06_man_cleanup.diff,
    11_compile_warnings.diff, 12_ssl_check.diff. All applied upstream
  * Updated 07_automake_missing_options.diff to reflect changes to upstream
    source
  * Fix typo in manpage, 11_smtpd.conf.5_typo.diff
  * Update the copyright file
  * Drop our local copy of the upstream changelog
  * Recommend opensmtpd-extras: the tables and filters have been forked off
    into a separate project upstream
  * (Build-)Depend on libasr: this library has also forked off into a
    stand-alone project
  * Drop useless build-dependencies on autoconf/automake/libtool: these are
    already brought in by dh-autoreconf
  * Update lintian overrides: we drop overrides for filters moved to
    opensmtpd-extras, add overrides due to a broken dep5 check, and
    override spelling-error-in-copyright (the error is in the license text)
  * Update configure options in rules to continue building the db table and
    makemap

 -- Ryan Kavanagh <email address hidden>  Sun, 01 Nov 2015 20:56:47 -0500

Available diffs

Superseded in xenial-release on 2015-11-02
Obsolete in wily-release on 2018-01-22
Obsolete in vivid-release on 2018-01-18
Deleted in vivid-proposed on 2018-01-22 (Reason: moved to release)
opensmtpd (5.4.2p1-4) unstable; urgency=medium


  * Don't abort on unseen flags in debconf (Closes: #770939)
  * Added Dutch translations.
    Thanks to Frans Spiesschaert <email address hidden>
  * Bump standards version to 3.9.6
  * Updated debian/copyright to conform to dep5

 -- Ryan Kavanagh <email address hidden>  Fri, 06 Feb 2015 13:04:56 -0500

Available diffs

Superseded in vivid-release on 2015-02-07
Obsolete in utopic-release on 2016-11-03
Deleted in utopic-proposed on 2016-11-03 (Reason: moved to release)
opensmtpd (5.4.2p1-3) unstable; urgency=medium


  * Specify location of CA certificates when running ./configure; fixes broken
    certificate verification when establishing encrypted connection (Closes:
    #756069)

 -- Ryan Kavanagh <email address hidden>  Sat, 26 Jul 2014 12:08:25 +0200

Available diffs

Superseded in utopic-release on 2014-07-26
Deleted in utopic-proposed on 2014-07-28 (Reason: moved to release)
opensmtpd (5.4.2p1-2) unstable; urgency=medium


  * Disable fortify, fixes sigabort on buffer overflow false positive
  * Fix broken SSL version check, 12_ssl_check.diff (Closes: #748150)

 -- Ryan Kavanagh <email address hidden>  Wed, 11 Jun 2014 21:30:20 +0200

Available diffs

Superseded in utopic-release on 2014-06-12
Deleted in utopic-proposed on 2014-06-14 (Reason: moved to release)
opensmtpd (5.4.2p1-1) unstable; urgency=medium


  * Imported Upstream version 5.4.2p1
    + Drop 05_no_smtpscript.diff, no longer needed
    + Drop 08_man_errors.diff, applied upstream
    + Drop 09_hyphens_in_man.diff, applied upstream
  * This build against the new openssl package permits opensmtpd to start
    again (Closes: #748513); the underlying problem has been reported upstream
  * Install CONFIG-UPDATE.txt.gz (Closes: #741238)
  * Get rid of unnecessary compile time warnings, 11_compile_warnings.diff
    (Closes: #747666). Thanks to Benny Baumann for the patch.
  * Update copyright file with new holders and years
  * Update lintian overrides with new false positives for hyphens in man
    pages.

 -- Ryan Kavanagh <email address hidden>  Thu, 22 May 2014 21:34:02 +0200

Available diffs

Superseded in utopic-release on 2014-05-23
Published in trusty-release on 2014-02-03
Deleted in trusty-proposed (Reason: moved to release)
opensmtpd (5.4.1p1-1) unstable; urgency=medium


  * New upstream release (Closes: #732989)
  * Updated copyright file
  * Drop the following patches:
    + 01_binary_typos.diff, applied upstream
    + 03_no_hardlinks.diff, applied upstream
    + 07_mailname.diff, applied upstream
    + 08_empty_alias.diff, applied upstream
    + 10_automake_114.diff, no longer needed
    + 11_sys-mount.h_hurd.diff, applied upstream
    + 12_kfreebsd-hurd_crypt.h.diff, applied upstream
    + 13_reserve_inodes.diff, applied upstream
    + 14_syslog_prognames.diff, applied upstream
  * Add missing automake options, 07_automake_missing_options.diff, and use
    dh-autoreconf to update the autotools files
  * Fix man errors due to unknown command, 08_man_errors.diff
  * Don't use hyphens as minus signs, 09_hyphens_in_man.diff, and override
    lintian's false-positives due to the mdoc format
  * Update the path to aliases in the default smtpd.conf to reflect the
    location specified by Debian policy, 10_smtpd.conf.diff
  * Update debian/rules with new configure option names
  * We no longer need the opensmtpf user; no longer create it and delete the
    account on upgrade from 5.3.3p1
  * Added translations:
    + Spanish (Closes: #727017)
      Thanks to Camaleón <email address hidden>
    + Portuguese (Closes: #729923)
      Thanks to Américo Monteiro <email address hidden>
    + German (Closes: #730452)
      Thanks to Chris Leick <email address hidden>
  * Update standards version to 3.9.5
  * Install the upstream changelog / release notes
  * Added a NEWS file advising users of the changes to config and refer to
    (included) config upgrade notes based on those from the opensmtpd wiki

 -- Ryan Kavanagh <email address hidden>  Sun, 02 Feb 2014 09:57:15 -0500

Available diffs

Superseded in trusty-release on 2014-02-03
Deleted in trusty-proposed on 2014-02-04 (Reason: moved to release)
opensmtpd (5.3.3p1-4) unstable; urgency=low


  * Added French translations (Closes: #724343)
    Thanks to Jean-Pierre Giraud <email address hidden>
  * Added Swedish translation (Closes: #725103)
    Thanks to Martin Bagge <email address hidden>
  * Don't truncate process names in syslog, 14_syslog_prognames.diff
    (Closes: #724062)

 -- Ryan Kavanagh <email address hidden>  Sun, 20 Oct 2013 08:07:22 -0400
134 of 34 results