Skip to navigation

Bug Fix Advisory postfix bug fix and enhancement update

Advisory: RHBA-2013:0054-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2013-01-07
Last updated on: 2013-01-07
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)

Details

Updated postfix packages that fix multiple bugs and add one enhancement are now
available for Red Hat Enterprise Linux 5.

The postfix packages provide a Mail Transport Agent (MTA), which supports
protocols like LDAP, SMTP AUTH (SASL), and TLS.

This update fixes the following bugs:

* Prior to this update, upstream example scripts were not included. This update
adds these upstream example scripts to the postfix package. (BZ#251677)

* Prior to this update, the recipient duplicate elimination did not work
correctly. As a consequence, users with multiple virtual aliases could receive
multiple copies of emails. This update modifies the underlying code so that the
recipient duplicate elimination will work as expected if the
"enable_original_recipient" configuration option is set to "no". Now, users will
no longer receive multiple copies of emails. (BZ#474541)

* Prior to this update, the postconf documentation contained ambiguous
information about "reject_invalid_helo_hostname" restrictions. This update
modifies the postconf documentation and the "reject_invalid_helo_hostname"
parameter is now documented without ambiguity . (BZ#514948)

* Prior to this update, the milter (mail filter) communication failed for
headers that are larger than 64 kB. Further milter processing of the email was
blocked. Now, this update modifies the underlying code so that the long headers
are truncated to 60000 characters or less before milter processing. Now, milter
processes these large headers as expected. (BZ#617069)

* Prior to this update, the postfix init script looked for any process named
"master" when checking whether the postfix daemon was running. As a consequence,
the script could be tricked by any other process named "master", which could
lead to problems. This update modifies the init script to check for the process
ID (PID) which is more robust. (BZ#645348)

* Prior to this update, the manual pages for the command line tools "mailq",
"newaliases", "sendmail" and "aliases" were not supported by alternatives. As a
consequence, these man pages could not be displayed. This update adds support
for these manual pages to the alternatives list. (BZ#664627)

* Prior to this update, the biff notification code did not set the FD_CLOEXEC
file descriptor flag on created UDP sockets. As a consequence, the postfix agent
could leak file descriptors (FD) to the local delivery agent (LDA) and to other
processes spawned by LDA. This update modifies the underlying code to set the
FD_CLOEXEC as expected. (BZ#766499)

This update also adds the following enhancement:

* Prior to this update, the postfix agent did not support MySQL. This update
adds MySQL support to postfix. (BZ#502412)

All users of postfix are advised to upgrade to these updated packages, which fix
these bugs and add this enhancement.


Solution

Before applying this update, make sure all previously-released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
postfix-2.3.3-6.el5.src.rpm     MD5: 576c7f3e53e517e3b336bc84265e11b4
SHA-256: 757e547fd0a19e75be278f3af0842f6a825522405b69215e58ce755ae8655c2b
 
IA-32:
postfix-2.3.3-6.el5.i386.rpm     MD5: fc500850e57b5a2cc263ef5ae7745f55
SHA-256: c7dd57bd72a1c7e9b0f5f28235ad61bf63ad568e27199fa7a755b91504514e41
postfix-debuginfo-2.3.3-6.el5.i386.rpm     MD5: a9e47195a0662d6d5cf4fc56454cdd73
SHA-256: dacc9d7eee6e7e64dc3e4d5e5a0a98847a3736651a65ac052a8558e81bac2b34
postfix-pflogsumm-2.3.3-6.el5.i386.rpm     MD5: 29e1335e40765ea1e794f6a057717092
SHA-256: 70fd9ab3424863f137440417a717b2c2d2fb05ad62e60ebe05453884b4c41641
 
IA-64:
postfix-2.3.3-6.el5.ia64.rpm     MD5: 05d565a7f0717624fe9a27213d5fd78c
SHA-256: 7166e224d13818683f42cb8b2f9ab108a3cf10843952e5c069f367e7944a2bba
postfix-debuginfo-2.3.3-6.el5.ia64.rpm     MD5: 2af2fd44c7e65c336d8de47237b4b2ee
SHA-256: 9a89d159d0e5794be3f74d9dd988312f075317ec8e89e2e95734534da2747212
postfix-pflogsumm-2.3.3-6.el5.ia64.rpm     MD5: efe3f5319d08eafa75556cb11a02f3ef
SHA-256: a89a0a1a9fefd977862cb8605022790b9c331dce6fa399613b0d6ae64c153d26
 
PPC:
postfix-2.3.3-6.el5.ppc.rpm     MD5: f23a27c58b05fb70ebf5b4182e594473
SHA-256: 160a5f6e5187d0bb74ab4230c8de85f6790cde3a37bcaef1ac266a412db09814
postfix-debuginfo-2.3.3-6.el5.ppc.rpm     MD5: af811184f79672b6e20f7df81afd16de
SHA-256: fed10b8ef417aeb3f66e8c0c1648c307fbf9405b28ec4ae247120b9fa61b5940
postfix-pflogsumm-2.3.3-6.el5.ppc.rpm     MD5: b095b3ce0598340c57c19a2ca0fcae2d
SHA-256: a45d9cec8b39ab1ce10909e501b0286f2acf083a8fbfe0c5ed36f3ac73cd8f52
 
s390x:
postfix-2.3.3-6.el5.s390x.rpm     MD5: acc6345e66009cf7b542c1408f650107
SHA-256: 890052389d097da86fa5b519ce07e7e5b3b443c714cfb7bfdaf506b078336161
postfix-debuginfo-2.3.3-6.el5.s390x.rpm     MD5: b3ac1bbdbb93ffc32e9d8cf75d4c8e61
SHA-256: f3089bb43bd7fbadb453e8f97e808977a4216a9dea9c561e0417b463a00f0a26
postfix-pflogsumm-2.3.3-6.el5.s390x.rpm     MD5: a90b6626e88381118cdc89a4ca788468
SHA-256: b9504f46095e9cf44c627127ed9dc228dda10dfab4db68d2ba61ff79c0f65eab
 
x86_64:
postfix-2.3.3-6.el5.x86_64.rpm     MD5: 65432b10db9b39f6389876301fa3fae0
SHA-256: 92264e531d8b8e861ac6fd3258185ae5374608d1ddda9f98734a75713eb581dc
postfix-debuginfo-2.3.3-6.el5.x86_64.rpm     MD5: a7c3b869b8a4dc4a0ccfad98b76024fa
SHA-256: 868eebbe3e6a242f32ed952d57ce0dc9255bf09f5fa759533f0ca7d439ab8033
postfix-pflogsumm-2.3.3-6.el5.x86_64.rpm     MD5: 328ed77074832d2d40d6245f262c6b2d
SHA-256: d5f3a2250565d7b3be56bd719b2cd329c9fdea6dfe02ad6d53f9d7b1114793c4
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
postfix-2.3.3-6.el5.src.rpm     MD5: 576c7f3e53e517e3b336bc84265e11b4
SHA-256: 757e547fd0a19e75be278f3af0842f6a825522405b69215e58ce755ae8655c2b
 
IA-32:
postfix-2.3.3-6.el5.i386.rpm     MD5: fc500850e57b5a2cc263ef5ae7745f55
SHA-256: c7dd57bd72a1c7e9b0f5f28235ad61bf63ad568e27199fa7a755b91504514e41
postfix-debuginfo-2.3.3-6.el5.i386.rpm     MD5: a9e47195a0662d6d5cf4fc56454cdd73
SHA-256: dacc9d7eee6e7e64dc3e4d5e5a0a98847a3736651a65ac052a8558e81bac2b34
postfix-pflogsumm-2.3.3-6.el5.i386.rpm     MD5: 29e1335e40765ea1e794f6a057717092
SHA-256: 70fd9ab3424863f137440417a717b2c2d2fb05ad62e60ebe05453884b4c41641
 
x86_64:
postfix-2.3.3-6.el5.x86_64.rpm     MD5: 65432b10db9b39f6389876301fa3fae0
SHA-256: 92264e531d8b8e861ac6fd3258185ae5374608d1ddda9f98734a75713eb581dc
postfix-debuginfo-2.3.3-6.el5.x86_64.rpm     MD5: a7c3b869b8a4dc4a0ccfad98b76024fa
SHA-256: 868eebbe3e6a242f32ed952d57ce0dc9255bf09f5fa759533f0ca7d439ab8033
postfix-pflogsumm-2.3.3-6.el5.x86_64.rpm     MD5: 328ed77074832d2d40d6245f262c6b2d
SHA-256: d5f3a2250565d7b3be56bd719b2cd329c9fdea6dfe02ad6d53f9d7b1114793c4
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

251677 - example scripts missing
474541 - Duplicate recipient filter fails on virtual alias expansion
502412 - Postfix MySQL map support
514948 - Postfix documentation needs clarification on helo hostname parameter
645348 - Postfix init script 'status' not very robust
664627 - mailq manpage does not display



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/