Skip to navigation

Security Advisory Moderate: postfix security update

Advisory: RHSA-2011:0422-1
Type: Security Advisory
Severity: Moderate
Issued on: 2011-04-06
Last updated on: 2011-04-06
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux EUS (v. 5.6.z server)
Red Hat Enterprise Linux Long Life (v. 5.6 server)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2008-2937
CVE-2011-0411

Details

Updated postfix packages that fix two security issues are now available for
Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Postfix is a Mail Transport Agent (MTA), supporting LDAP, SMTP AUTH (SASL),
and TLS.

It was discovered that Postfix did not flush the received SMTP commands
buffer after switching to TLS encryption for an SMTP session. A
man-in-the-middle attacker could use this flaw to inject SMTP commands into
a victim's session during the plain text phase. This would lead to those
commands being processed by Postfix after TLS encryption is enabled,
possibly allowing the attacker to steal the victim's mail or authentication
credentials. (CVE-2011-0411)

It was discovered that Postfix did not properly check the permissions of
users' mailbox files. A local attacker able to create files in the mail
spool directory could use this flaw to create mailbox files for other local
users, and be able to read mail delivered to those users. (CVE-2008-2937)

Red Hat would like to thank the CERT/CC for reporting CVE-2011-0411, and
Sebastian Krahmer of the SuSE Security Team for reporting CVE-2008-2937.
The CERT/CC acknowledges Wietse Venema as the original reporter of
CVE-2011-0411.

Users of Postfix are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the postfix service will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
postfix-2.3.3-2.2.el5_6.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: adf6768b7f85619d00168c2262c31f9f
SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
 
IA-32:
postfix-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHBA-2013:0054
    MD5: 2f39c1295da95644f059da522e02f296
SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHBA-2013:0054
    MD5: 0663bd80be296fb374344d112f961017
SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700
 
IA-64:
postfix-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHBA-2013:0054
    MD5: 88f61280ed15c07ed6c8902ad51f85f2
SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHBA-2013:0054
    MD5: 0d134939f5af9430acc5bfdd434e0572
SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
 
PPC:
postfix-2.3.3-2.2.el5_6.ppc.rpm
File outdated by:  RHBA-2013:0054
    MD5: 2f14949bdc7dd656434d8801975bdfa4
SHA-256: 9b4fc5b73461c843f6ac2704b28fdd2f0662e8fb658d6e9b4262503a8a1c0196
postfix-pflogsumm-2.3.3-2.2.el5_6.ppc.rpm
File outdated by:  RHBA-2013:0054
    MD5: 3a9711e96a727ac9a8974a18d88ee711
SHA-256: 39383b2b45c1f2c810bee302a7db44f80ccd1e5f41d6594b7dfa7505306c45d0
 
s390x:
postfix-2.3.3-2.2.el5_6.s390x.rpm
File outdated by:  RHBA-2013:0054
    MD5: d98aa1a964be36e00174ca969129002e
SHA-256: 3fc0e9ca7277096282be360b8790e1edc99ab1a2cbe3f188c8c3cfffa13908f3
postfix-pflogsumm-2.3.3-2.2.el5_6.s390x.rpm
File outdated by:  RHBA-2013:0054
    MD5: c0452baf89832faca83bc053ecbbf5aa
SHA-256: 33c41cc725e2adaa7e676d7b8dd0a67f8dbc495a34d7712237cb7c16c5e459a2
 
x86_64:
postfix-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHBA-2013:0054
    MD5: 70f428d230f22142fba95eb6a260b82a
SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHBA-2013:0054
    MD5: e39865fd258f5515e2d7b41163e04979
SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
IA-64:
postfix-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 15817cd47f963a78eb5725eabcaa354b
SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 74ae85afb7d129c3dfedfec905a8da49
SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
 
PPC:
postfix-2.2.10-1.4.el4.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 55b273899898fdec4018c304f306b0fa
SHA-256: 8920e29720a02265893da454c9af0b92d9ec566e03650b04b2d611c1d55e756c
postfix-pflogsumm-2.2.10-1.4.el4.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 9238773f4fe2a8120346a9252cb60393
SHA-256: ae65c439b9688153e496b88025c77dd7c8963b3b250843cfe1ed5ec3ce9cc446
 
s390:
postfix-2.2.10-1.4.el4.s390.rpm
File outdated by:  RHSA-2011:0843
    MD5: 79cad53d64aa813ad1e485f6d7b32e5c
SHA-256: cda78658fc1f7f9aec4b638b6f2fffbb140cf50cf4cc884e74d31f5af612c982
postfix-pflogsumm-2.2.10-1.4.el4.s390.rpm
File outdated by:  RHSA-2011:0843
    MD5: 726ea9a9e7c63cf795e0f0a51d4474f1
SHA-256: 2c8e3c8e573eea1dff57e1927d7144ed24aeecbefa7b286e29fab3a7ed7e78bd
 
s390x:
postfix-2.2.10-1.4.el4.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: 23a2ebe302f31c217bb996fbc39ce00f
SHA-256: 3dc6663de2535468d77eaaaff0b0bbde7f806b5577851c92b7f7a583f369aead
postfix-pflogsumm-2.2.10-1.4.el4.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: 841a96b9769e95e7f8dc1ac3e8c63bb2
SHA-256: 27d441f3c7d6e9544c1cfb9f5993b747f9369a0c086652c186eda17febb1bb9e
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
Red Hat Enterprise Linux AS (v. 4.8.z)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
IA-64:
postfix-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 15817cd47f963a78eb5725eabcaa354b
SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 74ae85afb7d129c3dfedfec905a8da49
SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
 
PPC:
postfix-2.2.10-1.4.el4.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 55b273899898fdec4018c304f306b0fa
SHA-256: 8920e29720a02265893da454c9af0b92d9ec566e03650b04b2d611c1d55e756c
postfix-pflogsumm-2.2.10-1.4.el4.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 9238773f4fe2a8120346a9252cb60393
SHA-256: ae65c439b9688153e496b88025c77dd7c8963b3b250843cfe1ed5ec3ce9cc446
 
s390:
postfix-2.2.10-1.4.el4.s390.rpm
File outdated by:  RHSA-2011:0843
    MD5: 79cad53d64aa813ad1e485f6d7b32e5c
SHA-256: cda78658fc1f7f9aec4b638b6f2fffbb140cf50cf4cc884e74d31f5af612c982
postfix-pflogsumm-2.2.10-1.4.el4.s390.rpm
File outdated by:  RHSA-2011:0843
    MD5: 726ea9a9e7c63cf795e0f0a51d4474f1
SHA-256: 2c8e3c8e573eea1dff57e1927d7144ed24aeecbefa7b286e29fab3a7ed7e78bd
 
s390x:
postfix-2.2.10-1.4.el4.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: 23a2ebe302f31c217bb996fbc39ce00f
SHA-256: 3dc6663de2535468d77eaaaff0b0bbde7f806b5577851c92b7f7a583f369aead
postfix-pflogsumm-2.2.10-1.4.el4.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: 841a96b9769e95e7f8dc1ac3e8c63bb2
SHA-256: 27d441f3c7d6e9544c1cfb9f5993b747f9369a0c086652c186eda17febb1bb9e
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
postfix-2.3.3-2.2.el5_6.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: adf6768b7f85619d00168c2262c31f9f
SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
 
IA-32:
postfix-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHBA-2013:0054
    MD5: 2f39c1295da95644f059da522e02f296
SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHBA-2013:0054
    MD5: 0663bd80be296fb374344d112f961017
SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700
 
x86_64:
postfix-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHBA-2013:0054
    MD5: 70f428d230f22142fba95eb6a260b82a
SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHBA-2013:0054
    MD5: e39865fd258f5515e2d7b41163e04979
SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
IA-64:
postfix-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 15817cd47f963a78eb5725eabcaa354b
SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 74ae85afb7d129c3dfedfec905a8da49
SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
Red Hat Enterprise Linux ES (v. 4.8.z)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
IA-64:
postfix-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 15817cd47f963a78eb5725eabcaa354b
SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 74ae85afb7d129c3dfedfec905a8da49
SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
Red Hat Enterprise Linux EUS (v. 5.6.z server)

SRPMS:
postfix-2.3.3-2.2.el5_6.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: adf6768b7f85619d00168c2262c31f9f
SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
 
IA-32:
postfix-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 2f39c1295da95644f059da522e02f296
SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0663bd80be296fb374344d112f961017
SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700
 
IA-64:
postfix-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 88f61280ed15c07ed6c8902ad51f85f2
SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0d134939f5af9430acc5bfdd434e0572
SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
 
PPC:
postfix-2.3.3-2.2.el5_6.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 2f14949bdc7dd656434d8801975bdfa4
SHA-256: 9b4fc5b73461c843f6ac2704b28fdd2f0662e8fb658d6e9b4262503a8a1c0196
postfix-pflogsumm-2.3.3-2.2.el5_6.ppc.rpm
File outdated by:  RHSA-2011:0843
    MD5: 3a9711e96a727ac9a8974a18d88ee711
SHA-256: 39383b2b45c1f2c810bee302a7db44f80ccd1e5f41d6594b7dfa7505306c45d0
 
s390x:
postfix-2.3.3-2.2.el5_6.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: d98aa1a964be36e00174ca969129002e
SHA-256: 3fc0e9ca7277096282be360b8790e1edc99ab1a2cbe3f188c8c3cfffa13908f3
postfix-pflogsumm-2.3.3-2.2.el5_6.s390x.rpm
File outdated by:  RHSA-2011:0843
    MD5: c0452baf89832faca83bc053ecbbf5aa
SHA-256: 33c41cc725e2adaa7e676d7b8dd0a67f8dbc495a34d7712237cb7c16c5e459a2
 
x86_64:
postfix-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 70f428d230f22142fba95eb6a260b82a
SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: e39865fd258f5515e2d7b41163e04979
SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
 
Red Hat Enterprise Linux Long Life (v. 5.6 server)

SRPMS:
postfix-2.3.3-2.2.el5_6.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: adf6768b7f85619d00168c2262c31f9f
SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
 
IA-32:
postfix-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 2f39c1295da95644f059da522e02f296
SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0663bd80be296fb374344d112f961017
SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700
 
IA-64:
postfix-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 88f61280ed15c07ed6c8902ad51f85f2
SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0d134939f5af9430acc5bfdd434e0572
SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
 
x86_64:
postfix-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 70f428d230f22142fba95eb6a260b82a
SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: e39865fd258f5515e2d7b41163e04979
SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
postfix-2.2.10-1.4.el4.src.rpm
File outdated by:  RHSA-2011:0843
    MD5: d5211d31991c6048965e58b60ff0be26
SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
 
IA-32:
postfix-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: b08339c4fd54386f814dd441038063ef
SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm
File outdated by:  RHSA-2011:0843
    MD5: 0a1e8ea4e56fc9e42ba4844c5bb46bfd
SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
 
IA-64:
postfix-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 15817cd47f963a78eb5725eabcaa354b
SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 74ae85afb7d129c3dfedfec905a8da49
SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
 
x86_64:
postfix-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: 04f4c9fd370d85d7b438699fee5bb19a
SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm
File outdated by:  RHSA-2011:0843
    MD5: cccf2898c88f5cd6844931820de6225f
SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

456347 - CVE-2008-2937 postfix improper mailbox permissions
674814 - CVE-2011-0411 postfix: SMTP commands injection during plaintext to TLS session switch


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/