[SECURITY] Fedora 11 Update: sendmail-8.14.4-3.fc11

updates at fedoraproject.org updates at fedoraproject.org
Mon Jun 14 17:26:40 UTC 2010


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5399
2010-03-30 00:36:38
--------------------------------------------------------------------------------

Name        : sendmail
Product     : Fedora 11
Version     : 8.14.4
Release     : 3.fc11
URL         : http://www.sendmail.org/
Summary     : A widely used Mail Transport Agent (MTA)
Description :
The Sendmail program is a very widely used Mail Transport Agent (MTA).
MTAs send mail from one machine to another. Sendmail is not a client
program, which you use to read your email. Sendmail is a
behind-the-scenes program which actually moves your email over
networks or the Internet to where you want it to go.

If you ever need to reconfigure Sendmail, you will also need to have
the sendmail-cf package installed. If you need documentation on
Sendmail, you can install the sendmail-doc package.

--------------------------------------------------------------------------------
Update Information:

This new version of sendmail fixes security bug - handling of bogus certificates
with NULLs in CNs. Also many other bugs have been fixed, for complete list
please see: http://www.sendmail.org/releases/8.14.4
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 15 2010 Jaroslav Škarvada <jskarvad at redhat.com> - 8.14.4-3
- fixed libresolv implicit DSO linking (#564647)
- fixed initscript LSB compliance (#561040)
* Thu Feb  4 2010 Jaroslav Škarvada <jskarvad at redhat.com> - 8.14.4-2
- fixed typo in spec file
- fixed aliases_dir patch
* Tue Feb  2 2010 Jaroslav Škarvada <jskarvad at redhat.com> - 8.14.4-1
- new version 8.14.4 (#552078)
- RPM attributes S, 5, T not recorded for statistics file
- adapted patches: makemapman, dynamic, switchfile (#552078)
- movefiles patch incorporated into aliases_dir patch
- drop exitpanic patch (fixed upstream)
* Sun Jan  3 2010 Robert Scheck <robert at fedoraproject.org> 8.14.3-10
- handle IPv6:::1 in block_bad_helo.m4 like 127.0.0.1 (#549217)
* Tue Dec 15 2009 Miroslav Lichvar <mlichvar at redhat.com> 8.14.3-9
- fix milter file descriptors leaks (#485426)
- skip colon separator when parsing service name in ServiceSwitchFile
- return with non-zero exit code when free space is below MinFreeBlocks
- fix service stop/restart when only smclient is running
- fix submit.cf and helpfile permissions
- more merge review fixes (#226407)
* Wed Sep 16 2009 Tomas Mraz <tmraz at redhat.com> - 8.14.3-8
- Use password-auth common PAM configuration instead of system-auth
* Fri Aug 21 2009 Tomas Mraz <tmraz at redhat.com> - 8.14.3-7
- rebuilt with new openssl
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 8.14.3-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #552622 - CVE-2009-4565 sendmail: incorrect verification of SSL certificate with NUL in name
        https://bugzilla.redhat.com/show_bug.cgi?id=552622
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update sendmail' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list