[ubuntu/yakkety-proposed] exim4 4.87-3ubuntu1 (Accepted)

Christian Ehrhardt christian.ehrhardt at canonical.com
Wed Aug 17 14:10:56 UTC 2016


exim4 (4.87-3ubuntu1) yakkety; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    + Show Ubuntu distribution in SMTP banner.
    + Build-Depends on lsb-release (needed for the Ubuntu SMTP banner patch)

exim4 (4.87-3) unstable; urgency=medium

  * Pull multiple patches from upstream GIT:
    + 71_01_configure.default-nice-message-for-overlong-lines-Bu.patch
      Improved message on overlong lines in example config.
    + 71_02_Delivery-quieten-smtp-transport-conn-reuse-vs.-deliv.patch
      Fix race condition related to connection reuse.
      https://bugs.exim.org/show_bug.cgi?id=1810
    + 71_03_Avoid-exposing-passwords-in-log-on-failing-ldap-look.patch
      71_04_Avoid-exposing-passwords-in-log-on-failing-ldap-look.patch
      Avoid exposing passwords in log on failing ldap lookup
      expansion. https://bugs.exim.org/show_bug.cgi?id=165
  * Copy information message on rejecting overlong lines in data ACL from
    upstream example configuration. Closes: #823418
  * Add NEWS entry on line-lenght-limit introduced in 4.87~RC1-1.
    Closes: 821830

exim4 (4.87-2) unstable; urgency=medium

  * Fix reference to README.Debian in 01_exim4-config_listmacrosdefs.
    (Thanks, L. Guruprasad!) Closes: #821416
  * Add REMOTE_SMTP_SMARTHOST_HOSTS_REQUIRE_TLS macro to enforce TLS
    connections (hosts_require_tls option) in remote_smtp_smarthost
    transport. Closes: #822174
  * exim4-daemon-heavy: Disable WITH_OLD_DEMIME ("demime" ACL condition). It
    is deprecated and will be removed in 4.88.
  * README.Debian*: Fix minor issues  found by lintian.
  * Fix reference to spec.txt in 30_exim4-config_check_rcpt. Closes: #665399
  * Drop exim4-base Recommends on perl-modules. This had been unnecessary
    since 4.80~rc6-1 which dropped /usr/share/exim4/timeout.pl.

exim4 (4.87-1) unstable; urgency=medium

  * Fix comment in
    conf.d/transport/30_exim4-config_remote_smtp_smarthost. (Thanks,
    Jörg-Volker Peetz!) Closes: #819780
  * New upstream release.

exim4 (4.87~RC7-1) unstable; urgency=low

  * Enable SOCKS support in both -light and -heavy. Closes: #818091
  * Fix typos in configuration. (Thanks, Vincent Lefevre!) Closes: #819482
  * New upstream version.
    + Drop 74_Store-the-initial-working-directory.diff,
      75_String-expansions-fix-extract.patch,
      76_only_warn_on_nonempty_environment.diff.
    + Update debian/example.conf.md5.

exim4 (4.87~RC6-3) unstable; urgency=medium

  * Merge changelog entries for 4.86.2-1 and -2.
  * Upload to unstable.
  * Add link to CVE details to latest NEWS entry and bump its version and date
    to match this upload. Closes: #818349, #817244

exim4 (4.87~RC6-2) experimental; urgency=medium

  * 74_Store-the-initial-working-directory.diff,
    76_only_warn_on_nonempty_environment.diff: Upstream followups on the
    CVE fix (Thanks, Heiko Schlittermann!):
    + Runtime warning is only generated if (and only if) keep_environment
      is unset and environment is nonempty.
    + Store the initial working directory and make it available in the new
      expansion variable $initial_cwd.
  * Merge all NEWS.Debian files into a single one, identical for all binary
    packages. - Different NEWS files built from a single source package is not
    and has not ever been supported by apt-listchanges which is the most
    important frontend.
  * Add a NEWS entry about the environment related runtime warning.

exim4 (4.87~RC6-1) experimental; urgency=medium

  * New upstream version.
  * Add 75_String-expansions-fix-extract.patch from upstream GIT, fixing
    ${extract } string expansion for the numeric/3-string case. (Bug was
    introduced in 4.85.)
  * Set keep_environment to empty value instead of setting a minimal PATH in
    add_environment.

exim4 (4.87~RC5-2) experimental; urgency=medium

  * Update debian/upstream/signing-key.asc, using the keys listed in
    ftp://ftp.exim.org/pub/exim/Exim-Maintainers-Keyring.asc. This adds
    Heiko Schlittermann's key.
  * Bump exim4-config Breaks to exim4-daemon-* (<< 4.87~RC5). Closes: #816790

exim4 (4.87~RC5-1) experimental; urgency=medium

  * exim4-config.postinst: Test for existence of /etc/inetd.conf before trying
    to grep in it. Closes: #814998
  * New upstream version, includes the patch for CVE-2016-1531. (Local root
    exploit).
  * Add macros MAIN_KEEP_ENVIRONMENT and MAIN_ADD_ENVIRONMENT to set the new
    options. If neither is used we use add_environment to set a minimal
    PATH=/bin:/usr/bin to avoid a runtime warning.

exim4 (4.87~RC3-2) experimental; urgency=medium

  * README.Debian: Refer to Exim specification by chapter name instead of
    chapter number. Closes: #813351
  * Fix some spelling errors found by lintian.
  * Minor debian/rules cleanup:
    + Restore originally intended behavior, upstream changelog is only
      shipped in exim4-base, symlinks to it elsewhere.
    + Drop workaround for #347577, fixed in debhelper 5.0.15.
    + Use "dh binary-arch" and "dh binary-indep" and a bunch of override
      targets instead of listing all dh-commands. While this is uglier and
      slows things down a bit it shortens debian/rules by 40 lines and has the
      huge benefit that we automatically use all suggested helpers in correct
      order.
    + Drop unused variables combinedidbgpackage/dhcombinedidbgpackage.
    + Delete unused, commented code.
    + Drop (exported) variable MTACONFLICTS, used only once.
  * Bugfix: Stop build if generation of EDITME.exim4-heavy fails.
  * Refresh debian/EDITME.*, -heavy was missing ldap and sql support.

exim4 (4.87~RC3-1) experimental; urgency=medium

  * Move Vcs-* from git/http to https.
  * [lintian] README.Debian: s/desireable/desirable/.
  * [lintian] README.Debian: Fix grammar error "allow + infinitive".
  * [lintian] exim4-config.postinst: Use which foo > /dev/null
    instead of [ -x /path/to/foo ].
  * Update list of patches in debian/README.Debian.xml
  * Drop 66_enlarge-dh-parameters-size.dpatch: It does not have any effect
    with GnuTLS >= 2.12 and even stable has GnuTLS 3.x.
  * New upstream version.
    + Upstream's default rcpt ACL now requires that a HELO/EHLO was accepted,
      merge this change and drop CHECK_MAIL_HELO_ISSUED macro.

exim4 (4.87~RC2-1) experimental; urgency=medium

  * New upstream version.

exim4 (4.87~RC1-1) experimental; urgency=medium

  * New upstream version.
    + Refresh patches.
    + Drop debian/patches/75_00xx*.patch from exim-4_86+fixes branch.
    + Sync with upstream default configuration: Check maximum (physical, i.e.
      before unfolding) line length in default spec file data ACL and smtp
      transport. Bug 1684 Closes: #797919
    + HS/02 Add the Exim version string to the process info.  This way exiwhat
      gives some more detail about the running daemon. Closes: #240883
  * Override upstream's new default of tls_advertise_hosts = * if
    MAIN_TLS_ENABLE is not set.

Date: Tue, 26 Jul 2016 13:30:09 +0200
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Robie Basak <robie.basak at canonical.com>
https://launchpad.net/ubuntu/+source/exim4/4.87-3ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 26 Jul 2016 13:30:09 +0200
Source: exim4
Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev
Architecture: source
Version: 4.87-3ubuntu1
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Description:
 exim4      - metapackage to ease Exim MTA (v4) installation
 exim4-base - support files for all Exim MTA (v4) packages
 exim4-config - configuration for the Exim MTA (v4)
 exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac
 exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon
 exim4-daemon-light - lightweight Exim MTA (v4) daemon
 exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon
 exim4-dbg  - debugging symbols for the Exim MTA (utilities)
 exim4-dev  - header files for the Exim MTA (v4) packages
 eximon4    - monitor application for the Exim MTA (v4) (X11 interface)
Closes: 240883 665399 797919 813351 814998 816790 817244 818091 818349 819482 819780 821416 821830 822174 823418
Changes:
 exim4 (4.87-3ubuntu1) yakkety; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     + Show Ubuntu distribution in SMTP banner.
     + Build-Depends on lsb-release (needed for the Ubuntu SMTP banner patch)
 .
 exim4 (4.87-3) unstable; urgency=medium
 .
   * Pull multiple patches from upstream GIT:
     + 71_01_configure.default-nice-message-for-overlong-lines-Bu.patch
       Improved message on overlong lines in example config.
     + 71_02_Delivery-quieten-smtp-transport-conn-reuse-vs.-deliv.patch
       Fix race condition related to connection reuse.
       https://bugs.exim.org/show_bug.cgi?id=1810
     + 71_03_Avoid-exposing-passwords-in-log-on-failing-ldap-look.patch
       71_04_Avoid-exposing-passwords-in-log-on-failing-ldap-look.patch
       Avoid exposing passwords in log on failing ldap lookup
       expansion. https://bugs.exim.org/show_bug.cgi?id=165
   * Copy information message on rejecting overlong lines in data ACL from
     upstream example configuration. Closes: #823418
   * Add NEWS entry on line-lenght-limit introduced in 4.87~RC1-1.
     Closes: 821830
 .
 exim4 (4.87-2) unstable; urgency=medium
 .
   * Fix reference to README.Debian in 01_exim4-config_listmacrosdefs.
     (Thanks, L. Guruprasad!) Closes: #821416
   * Add REMOTE_SMTP_SMARTHOST_HOSTS_REQUIRE_TLS macro to enforce TLS
     connections (hosts_require_tls option) in remote_smtp_smarthost
     transport. Closes: #822174
   * exim4-daemon-heavy: Disable WITH_OLD_DEMIME ("demime" ACL condition). It
     is deprecated and will be removed in 4.88.
   * README.Debian*: Fix minor issues  found by lintian.
   * Fix reference to spec.txt in 30_exim4-config_check_rcpt. Closes: #665399
   * Drop exim4-base Recommends on perl-modules. This had been unnecessary
     since 4.80~rc6-1 which dropped /usr/share/exim4/timeout.pl.
 .
 exim4 (4.87-1) unstable; urgency=medium
 .
   * Fix comment in
     conf.d/transport/30_exim4-config_remote_smtp_smarthost. (Thanks,
     Jörg-Volker Peetz!) Closes: #819780
   * New upstream release.
 .
 exim4 (4.87~RC7-1) unstable; urgency=low
 .
   * Enable SOCKS support in both -light and -heavy. Closes: #818091
   * Fix typos in configuration. (Thanks, Vincent Lefevre!) Closes: #819482
   * New upstream version.
     + Drop 74_Store-the-initial-working-directory.diff,
       75_String-expansions-fix-extract.patch,
       76_only_warn_on_nonempty_environment.diff.
     + Update debian/example.conf.md5.
 .
 exim4 (4.87~RC6-3) unstable; urgency=medium
 .
   * Merge changelog entries for 4.86.2-1 and -2.
   * Upload to unstable.
   * Add link to CVE details to latest NEWS entry and bump its version and date
     to match this upload. Closes: #818349, #817244
 .
 exim4 (4.87~RC6-2) experimental; urgency=medium
 .
   * 74_Store-the-initial-working-directory.diff,
     76_only_warn_on_nonempty_environment.diff: Upstream followups on the
     CVE fix (Thanks, Heiko Schlittermann!):
     + Runtime warning is only generated if (and only if) keep_environment
       is unset and environment is nonempty.
     + Store the initial working directory and make it available in the new
       expansion variable $initial_cwd.
   * Merge all NEWS.Debian files into a single one, identical for all binary
     packages. - Different NEWS files built from a single source package is not
     and has not ever been supported by apt-listchanges which is the most
     important frontend.
   * Add a NEWS entry about the environment related runtime warning.
 .
 exim4 (4.87~RC6-1) experimental; urgency=medium
 .
   * New upstream version.
   * Add 75_String-expansions-fix-extract.patch from upstream GIT, fixing
     ${extract } string expansion for the numeric/3-string case. (Bug was
     introduced in 4.85.)
   * Set keep_environment to empty value instead of setting a minimal PATH in
     add_environment.
 .
 exim4 (4.87~RC5-2) experimental; urgency=medium
 .
   * Update debian/upstream/signing-key.asc, using the keys listed in
     ftp://ftp.exim.org/pub/exim/Exim-Maintainers-Keyring.asc. This adds
     Heiko Schlittermann's key.
   * Bump exim4-config Breaks to exim4-daemon-* (<< 4.87~RC5). Closes: #816790
 .
 exim4 (4.87~RC5-1) experimental; urgency=medium
 .
   * exim4-config.postinst: Test for existence of /etc/inetd.conf before trying
     to grep in it. Closes: #814998
   * New upstream version, includes the patch for CVE-2016-1531. (Local root
     exploit).
   * Add macros MAIN_KEEP_ENVIRONMENT and MAIN_ADD_ENVIRONMENT to set the new
     options. If neither is used we use add_environment to set a minimal
     PATH=/bin:/usr/bin to avoid a runtime warning.
 .
 exim4 (4.87~RC3-2) experimental; urgency=medium
 .
   * README.Debian: Refer to Exim specification by chapter name instead of
     chapter number. Closes: #813351
   * Fix some spelling errors found by lintian.
   * Minor debian/rules cleanup:
     + Restore originally intended behavior, upstream changelog is only
       shipped in exim4-base, symlinks to it elsewhere.
     + Drop workaround for #347577, fixed in debhelper 5.0.15.
     + Use "dh binary-arch" and "dh binary-indep" and a bunch of override
       targets instead of listing all dh-commands. While this is uglier and
       slows things down a bit it shortens debian/rules by 40 lines and has the
       huge benefit that we automatically use all suggested helpers in correct
       order.
     + Drop unused variables combinedidbgpackage/dhcombinedidbgpackage.
     + Delete unused, commented code.
     + Drop (exported) variable MTACONFLICTS, used only once.
   * Bugfix: Stop build if generation of EDITME.exim4-heavy fails.
   * Refresh debian/EDITME.*, -heavy was missing ldap and sql support.
 .
 exim4 (4.87~RC3-1) experimental; urgency=medium
 .
   * Move Vcs-* from git/http to https.
   * [lintian] README.Debian: s/desireable/desirable/.
   * [lintian] README.Debian: Fix grammar error "allow + infinitive".
   * [lintian] exim4-config.postinst: Use which foo > /dev/null
     instead of [ -x /path/to/foo ].
   * Update list of patches in debian/README.Debian.xml
   * Drop 66_enlarge-dh-parameters-size.dpatch: It does not have any effect
     with GnuTLS >= 2.12 and even stable has GnuTLS 3.x.
   * New upstream version.
     + Upstream's default rcpt ACL now requires that a HELO/EHLO was accepted,
       merge this change and drop CHECK_MAIL_HELO_ISSUED macro.
 .
 exim4 (4.87~RC2-1) experimental; urgency=medium
 .
   * New upstream version.
 .
 exim4 (4.87~RC1-1) experimental; urgency=medium
 .
   * New upstream version.
     + Refresh patches.
     + Drop debian/patches/75_00xx*.patch from exim-4_86+fixes branch.
     + Sync with upstream default configuration: Check maximum (physical, i.e.
       before unfolding) line length in default spec file data ACL and smtp
       transport. Bug 1684 Closes: #797919
     + HS/02 Add the Exim version string to the process info.  This way exiwhat
       gives some more detail about the running daemon. Closes: #240883
   * Override upstream's new default of tls_advertise_hosts = * if
     MAIN_TLS_ENABLE is not set.
Checksums-Sha1:
 27abbd2d270cc46dc014ec2858e14983bac790df 2864 exim4_4.87-3ubuntu1.dsc
 ca1c1aba63be80ca70ccfdc704ba9b899b77ec22 1801422 exim4_4.87.orig.tar.bz2
 91d28a1fd1cc1b3c28116bcbe41b75de4fe8ed7b 447076 exim4_4.87-3ubuntu1.debian.tar.xz
Checksums-Sha256:
 d760285759d9eaa827d874be603cc886021b29c3baba9c73171c0beaa7302f43 2864 exim4_4.87-3ubuntu1.dsc
 74691e0dff4d1b5d387e9c33c86f96a8f6d2adbc781c0dec9d2061a847b07dc9 1801422 exim4_4.87.orig.tar.bz2
 e300ec6ceb27a815f535e6b35f748e0a2a5c2fe291e0ed06020dd281b610bacc 447076 exim4_4.87-3ubuntu1.debian.tar.xz
Files:
 ad18751682ff90606e3f65abe4fcc87f 2864 mail standard exim4_4.87-3ubuntu1.dsc
 2effc2bd47ad2dc010f655c11a1b1173 1801422 mail standard exim4_4.87.orig.tar.bz2
 358cbb8906b43b8632ce8dcb8523e585 447076 mail standard exim4_4.87-3ubuntu1.debian.tar.xz
Original-Maintainer: Exim4 Maintainers <pkg-exim4-maintainers at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJXtHAqAAoJEOVkucJ1vdUub00QAMc3JZeWwm+RPZF0HjLlAin2
M1DjUGlhpUD6ousTP20bbJHrj1Ez4/yaW48OB7dQAeWeSmAlUujJ8sRCVZ/ZRZVH
KnfkvtmPvp41gsoUZxDQYQ6bqOwQ5BUlv9hXo5scATWDWxa2HXQRHB+hCVN4dNU8
HZnC5JsMjeQAGXF8G/OMmR7PevWfIVuVdQmIRS4CihdCkvSdxSZKTMwcupMcixN5
T7n8mFGQI8HMKuzVMwkNjpZi9zI+Cln3vTqZE66R92MgUq9v1W/qw97AAazuUr1T
IJDzUrctZ0oPN8seRQQB3kibx8sAuvfEe0nfpxhhwbaOdBcV21o5UWPbat1JSmkh
qpztDR/sex6qoHHi8C+b1AFug2Leb99JyyVc9YjzV9Bv/z+mNjwPAR4bPOrf+zLp
jgFayfzd6MOuGp0H9FHEjPrxZSseL9+jADeIgyKkA1L4mtBw2a4DSuiXYu2gpPXM
c9ypZzl6sJ9oqFIvqSED2pf+Apo03kar+eLN3BQdKwVWLvEOPNnAakRdEeroCXXT
fzwRpn1RGIrtQ97+llXM9hMWzcyQFjckHyZe+OqJJEPDFkZ0EOrM2pJCBLoadpdr
Cc2dH5jcdyObC9TlCR/Hl9mEztCPTspO2yswLhHc4S+xM9pxvL02oJXY0wTvp66e
taNZMOVgKbvXpK4V1pyb
=D8YA
-----END PGP SIGNATURE-----


More information about the Yakkety-changes mailing list