Commit Graph

581 Commits

Author SHA1 Message Date
Thomas Gerbet
becfbfde75 opensmtpd: 6.7.1p1 -> 6.8.0p2
The 6.8.0p2 release includes the fixes for CVE-2020-35679 and
CVE-2020-35680 [0].

[0] https://www.mail-archive.com/misc@opensmtpd.org/msg05188.html
2021-01-17 13:37:31 +01:00
Martin Milata
43f94415f9 sympa: 6.2.56 -> 6.2.60
Fixes: https://nvd.nist.gov/vuln/detail/CVE-2020-29668
       https://sympa-community.github.io/security/2020-003.html

ChangeLog: https://github.com/sympa-community/sympa/blob/6.2.60/NEWS.md
2021-01-16 14:31:23 +01:00
Ben Siraphob
872973d7d1 pkgs/servers: stdenv.lib -> lib 2021-01-15 14:24:03 +07:00
Profpatsch
4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
Alyssa Ross
cda9119b30
spamassassin: add myself as a maintainer
Gotta get those sweet Repology notifications.
2021-01-06 15:36:02 +00:00
Alyssa Ross
e917903079
spamassassin: 3.4.3 -> 3.4.4
Fixes: CVE-2020-1930
Fixes: CVE-2020-1931
2021-01-06 15:35:59 +00:00
Andreas Rammhold
bedb3528b6
dovecot_pigeonhole: 0.5.11 -> 0.5.13
This updates to the latest version. According to the changelog 0.5.12
was skipped. The changes in this release are required to be compatible
with the latest dovecot release.

Changes:
  - duplicate: The test was handled badly in a multiscript (sieve_before,
    sieve_after) scenario in which an earlier script in the sequence with
    a duplicate test succeeded, while a later script caused a runtime
    failure. In that case, the message is recorded for duplicate tracking,
    while the message may not actually have been delivered in the end.
  - editheader: Sieve interpreter entered infinite loop at startup when
    the "editheader" configuration listed an invalid header name. This
    problem can only be triggered by the administrator.
  - relational: The Sieve relational extension can cause a segfault at
    compile time. This is triggered by invalid script syntax. The segfault
    happens when this match type is the last argument of the test command.
    This situation is not possible in a valid script; positional arguments
    are normally present after that, which would prevent the segfault.
  - sieve: For some Sieve commands the provided mailbox name is not
    properly checked for UTF-8 validity, which can cause assert crashes at
    runtime when an invalid mailbox name is encountered. This can be
    caused by the user by writing a bad Sieve script involving the
    affected commands ("mailboxexists", "specialuse_exists").
    This can be triggered by the remote sender only when the user has
    written a Sieve script that passes message content to one of the
    affected commands.
  - sieve: Large sequences of 8-bit octets passed to certain Sieve
    commands that create or modify message headers that allow UTF-8 text
    (vacation, notify and addheader) can cause the delivery or IMAP
    process (when IMAPSieve is used) to enter a memory-consuming
    semi-infinite loop that ends when the process exceeds its memory
    limits. Logged in users can cause these hangs only for their own
    processes.
2021-01-04 17:59:57 +01:00
Andreas Rammhold
4fee20e267
dovecot: add the dovecot NixOS test to passthru.tests
While we already had some test we might as well add the test for that
exact package to the tests attribute set. After all that should be what
(primarily) tests dovecot.
2021-01-04 17:45:28 +01:00
Andreas Rammhold
58c7d3ff17
dovecot: 2.3.11.3 -> 2.3.13
This fixes CVE_2020-24386, CVE-2020-25725 and a bunch of regular bugs
[1].

* CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
	  allow logged in user to access other people's emails and filesystem
	  information.

* CVE-2020-25275: Mail delivery / parsing crashed when the 10 000th MIME part was
  message/rfc822 (or if parent was multipart/digest). This happened
  due to earlier MIME parsing changes for CVE-2020-12100.

[1] https://raw.githubusercontent.com/dovecot/core/2.3.13/NEWS
2021-01-04 17:37:32 +01:00
Johannes Schleifenbaum
d0ec6db7ce
mailhog: 1.0.0 -> 1.0.1 2020-12-17 16:58:29 +01:00
R. RyanTM
24f37c858a postsrsd: 1.8 -> 1.9 2020-12-08 03:10:37 +00:00
Sandro Jäckel
a3c02a34e2
mailman: Disable tests 2020-12-07 11:02:01 +01:00
R. RyanTM
0e0b2c8030 postsrsd: 1.7 -> 1.8 2020-12-04 20:29:25 +00:00
R. RyanTM
4aabd257ea postsrsd: 1.6 -> 1.7 2020-12-03 05:27:35 +00:00
Yannick Markus
0e87647421
postfix: fix "cant find <mysql.h>" 2020-11-26 10:56:11 +01:00
R. RyanTM
47ee51869f postfix: 3.5.7 -> 3.5.8 2020-11-19 16:14:56 +00:00
Vika
71998ddc33
rspamd: fix builds on non-x86_64-linux platforms
LuaJIT is built in rspamd only on x86_64-linux, and LuaJIT support
became enabled by default in 2.6, breaking builds without it. This
commit explicitly disables LuaJIT support on non-x86_64 architectures.
2020-11-16 16:38:11 +03:00
Martin Weinelt
9309563332
postfix: add passthru tests 2020-11-12 20:00:50 +01:00
R. RyanTM
2e6b023570 postfix: 3.5.6 -> 3.5.7 2020-11-10 22:28:59 -08:00
freezeboy
2549a11c58 freepops: remove
this software has not received any update since 2014, the website
is stating that it is unmaintained:

http://freepops.sourceforge.net/

It is also marked broken since 6 years
2020-11-03 00:34:04 +01:00
Philipp Kern
f433d25ea0 exim: unconditionally build with dsearch lookups enabled
dsearch is required to do untainted lookups in directories. There's
no reason not to build it in and it's a standard feature in other
distributions.
2020-10-31 10:57:46 +01:00
Niklas Hambüchen
1c20e2c9f2 rspamd: add passthru.tests 2020-10-22 02:36:53 +02:00
Niklas Hambüchen
ff7792dd05 rspamd: 2.5 -> 2.6 2020-10-11 07:28:16 +02:00
Rickard Nilsson
5d4cc0e25c Unmaintain a few packages 2020-09-24 21:12:32 +02:00
Robert Schütz
c62812c321 dovecot_pigeonhole: 0.5.10 -> 0.5.11 2020-08-13 09:56:43 +02:00
Robert Schütz
4f5b797ec3 dovecot: 2.3.10.1 -> 2.3.11.3 2020-08-13 09:54:32 +02:00
Robert Schütz
91d6b557b5 postfix: 3.5.4 -> 3.5.6 2020-08-01 18:15:33 +02:00
ajs124
549540559a exim: add DMARC support 2020-07-24 16:58:32 +02:00
ajs124
0a998fcdfc exim: 4.93 -> 4.94 2020-07-19 17:30:12 +02:00
Robert Schütz
2b54a7ed51
postfix: 3.5.3 -> 3.5.4 (#91768) 2020-07-03 12:15:49 +02:00
Linus Heckemann
176bc68a69 mailman: log to journal 2020-06-18 17:23:33 +02:00
Linus Heckemann
f5a57c6c40 mailman-web: remove django version checks and override
This is nonsense! Postorius and Hyperkitty don't even support 1.11 anymore.
2020-06-18 17:21:41 +02:00
Léo Gaspard
b0a2d1cef7
Merge pull request #78780 from ju1m/dovecot_fts_xapian
Dovecot plugin for Full Text Search (FTS) with Xapian
2020-06-16 22:00:26 +02:00
Robert Schütz
6c9186d267
postfix: 3.5.2 -> 3.5.3 (#90493) 2020-06-15 19:08:59 +02:00
Frederik Rietdijk
febc27b59a Merge master into staging-next 2020-06-12 08:57:26 +02:00
Peter Simons
c9c79d7dba
Merge pull request #88972 from asbachb/update-postfix-3.5.2
postfix: 3.4.10 -> 3.4.12 -> 3.5.2
2020-06-11 08:43:42 +02:00
R. RyanTM
736363d715
opensmtpd: 6.7.0p1 -> 6.7.1p1 (#90090) 2020-06-10 23:11:05 +02:00
Jan Tojnar
acb53e0698
Merge branch 'staging-next' into staging 2020-06-10 04:10:57 +02:00
Alyssa Ross
9e59980eb5 python3.pkgs.hyperkitty: 1.3.2 -> 1.3.3 2020-06-06 01:05:29 +00:00
Alyssa Ross
1fe94466e6 python3.pkgs.postorius: 1.3.2 -> 1.3.3 2020-06-06 01:05:29 +00:00
Alyssa Ross
5322686d53 mailman: 3.3.0 -> 3.3.1 2020-06-06 01:05:29 +00:00
Martin Milata
31789d15c8 sympa: 6.2.54 -> 6.2.56
Fixes: https://nvd.nist.gov/vuln/detail/CVE-2020-10936
       https://sympa-community.github.io/security/2020-002.html

ChangeLog: https://github.com/sympa-community/sympa/blob/6.2.56/NEWS.md
2020-06-04 18:39:01 +02:00
Benjamin Asbach
e86ed7e693 postfix: 3.4.12 -> 3.5.2 2020-05-26 11:19:55 +02:00
Benjamin Asbach
ae7b57c8ca postfix: 3.4.10 -> 3.4.12
`0001-Fix-build-with-glibx-2.30` was removed since the patch is already applied to upstream source.
2020-05-25 01:44:21 +02:00
R. RyanTM
cd79923c14 opensmtpd: 6.6.4p1 -> 6.7.0p1 2020-05-23 00:25:43 +00:00
Andreas Rammhold
f72b603a6d
Merge pull request #88076 from mweinelt/dovecot
dovecot: v2.3.10 → v2.3.10.1
2020-05-20 11:40:12 +02:00
ajs124
7ed1c6f1b2 exim: 4.92.3 -> 4.93.0.4
As per the updating notes[1], DISABLE_TLS replaces SUPPORT_TLS.
The build system also wants you to choose between OpenSSL and GnuTLS.
Since we were using OpenSSL until now, I chose that.

[1]: https://git.exim.org/exim.git/blob_plain/885bb037cb791e057de2105bb3790c6135914c62:/src/README.UPDATING
2020-05-18 19:23:13 +02:00
Martin Weinelt
6cf48856d2
dovecot: v2.3.10 → v2.3.10.1
Fixes: CVE-2020-10957, CVE-2020-10958, CVE-2020-10967
2020-05-18 18:40:40 +02:00
Julien Moutinho
8be7358384 maintainers: add julm 2020-05-09 14:13:31 +02:00
Julien Moutinho
1ef7bea94d dovecot_fts_xapian: init at 1.3.1 2020-05-09 13:46:53 +02:00