Unsorted entries in PLIST files have generated a pkglint warning for at
least 12 years. Somewhat more recently, pkglint has learned to sort
PLIST files automatically. Since pkglint 5.4.23, the sorting is only
done in obvious, simple cases. These have been applied by running:
pkglint -Cnone,PLIST -Wnone,plist-sort -r -F
"p5-Mail-SPF". The first two packages install "bin/spfd" while the
latter install "sbin/spfd".
Problem pointed out by Petar Bogdanovic in PR pkg/49271.
version 1.2.9 (which is old) is not available. Two improvements that
I noticed are:
1.) A remote DoS vulnerability (for which "pkgsrc" had a patch) has
been fixed.
2.) The SPF records for "gmail.com" are now accepted again.
objects, so provide a dummy file which will always get included to avoid
issues on systems where you are not allowed an empty library. Noticed
by tron.
Bump PKGREVISION.
This can crash applications using "libspf2" (e.g. "milter-greylist")
in an e-mail gets delivered via SMTP over IPv6 depending on the
remote machine's IPv6 address.
This changes the buildlink3.mk files to use an include guard for the
recursive include. The use of BUILDLINK_DEPTH, BUILDLINK_DEPENDS,
BUILDLINK_PACKAGES and BUILDLINK_ORDER is handled by a single new
variable BUILDLINK_TREE. Each buildlink3.mk file adds a pair of
enter/exit marker, which can be used to reconstruct the tree and
to determine first level includes. Avoiding := for large variables
(BUILDLINK_ORDER) speeds up parse time as += has linear complexity.
The include guard reduces system time by avoiding reading files over and
over again. For complex packages this reduces both %user and %sys time to
half of the former time.
Unfortunately there does not appear to be much more information on the
changes other than:
"This fixes aborts when generating explanations for mails with a long envelope sender, amongst other issues. An update is recommended."
Unfortunately details changes don't seem to be available:
After a long hiatus, new releases of libspf2! Development work from a number
of contributors has resulted in the release of versions up to 1.2.8. It is
recommended that all users upgrade as soon as possible, since this release
fixes some significant bugs. This release also comes with new doxygen
documentation which should make the code easier to understand and
cross-reference.
Includes the fix for CVE-2008-2469
protocol pair. libspf2 is a library which allows email systems such as
Sendmail, Postfix, Exim, Zmailer and MS Exchange to check SPF records
and make sure that the email is authorized by the domain name that it
is coming from. This prevents email forgery, commonly used by spammers,
scammers and email viruses/worms.
