CVS commit: pkgsrc/mail/exim

["Adam Ciarcinski" <adam%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   adam
Date:           Mon May  9 13:30:47 UTC 2011

Modified Files:
        pkgsrc/mail/exim: Makefile distinfo
        pkgsrc/mail/exim/patches: patch-aa patch-ac
Removed Files:
        pkgsrc/mail/exim/patches: patch-ah patch-ba

Log Message:
Changes 4.76:
* The new ldap_require_cert option would segfault if used.  Fixed.
* Harmonised TLS library version reporting; only show if debugging.
  Layout now matches that introduced for other libraries in 4.74 PP/03.
* New openssl_options items: no_sslv2 no_sslv3 no_ticket no_tlsv1
* New "dns_use_edns0" global option.
* Don't segfault on misconfiguration of ref:name exim-user as uid.
* Extra paranoia around buffer usage at the STARTTLS transition.
  nb: Exim is not vulnerable to http://www.kb.cert.org/vuls/id/555316
* Updated PolarSSL code to 0.14.2.
* Catch divide-by-zero in ${eval:...}.
* Condition negation of bool{}/bool_lax{} did not negate.  Fixed.
* CVE-2011-1764 - DKIM log line was subject to a format-string attack --
  SECURITY: remote arbitrary code execution.
* SECURITY - DKIM signature header parsing was double-expanded, second
  time unintentionally subject to list matching rules, letting the header
  cause arbitrary Exim lookups (of items which can occur in lists, *not*
  arbitrary string expansion). This allowed for information disclosure.
* Fix another SIGFPE (x86) in ${eval:...} expansion, this time related to
  INT_MIN/-1 -- value coerced to INT_MAX.


To generate a diff of this commit:
cvs rdiff -u -r1.107 -r1.108 pkgsrc/mail/exim/Makefile
cvs rdiff -u -r1.50 -r1.51 pkgsrc/mail/exim/distinfo
cvs rdiff -u -r1.21 -r1.22 pkgsrc/mail/exim/patches/patch-aa
cvs rdiff -u -r1.14 -r1.15 pkgsrc/mail/exim/patches/patch-ac
cvs rdiff -u -r1.1 -r0 pkgsrc/mail/exim/patches/patch-ah
cvs rdiff -u -r1.2 -r0 pkgsrc/mail/exim/patches/patch-ba

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.