ports/121873: upgrade: amavisd-new 2.5.3 to 2.5.4

[Michael Scheidell]

>Number:         121873
>Category:       ports
>Synopsis:       upgrade: amavisd-new 2.5.3 to 2.5.4
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Wed Mar 19 17:10:01 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Michael Scheidell
>Release:        6.3
>Organization:
SECNAP Network Security
>Environment:
NA (all)
>Description:
amavisd-new has been updated to version 2.5.4.

BUG FIXES

- simplify regular expressions in parse_quoted_rfc2821() to avoid perl crashing
  on a long degenerated e-mail address; reported by S'bastien Aveline;

- further simplify (split in two) regular expressions in parse_address_list()
  to avoid perl crashing on long degenerated e-mail addresses in From, To,
  and Cc header fields, also reported and sample provided by Tomi Lukkarinen;

- incorrect parsing of header fields could let a header field to be ignored
  when preparing notification templates, or when adding a spam tag to a
  Subject header field, causing a second Subject header field to be inserted;
  reported by Mike Cisar;

- untaint a policy bank name when it comes from an AM.PDP protocol request;
  symptom was a failure to insert a pen pals SQL record in a milter setup;
  reported by Peter Huetmannsberger;

- smtp client code inappropriately concluded there is no progress being made
  when forwarding a message back to MTA, and exited a rw_loop when sysread
  returned status EAGAIN despite a 'select' setting an input-ready flag;
  the problem was detected on Solaris, although it could be more general;
  thanks to Aleksandr for a detailed problem report;

- limit the number of filenames given as arguments to a file(1) utility
  to stay within a safe program argument space limit, run file(1) multiple
  times if necessary;

- change the sprintf format for conversion of 64-bit SNMP-like counter values
  into a string (replaced %020d by %020.0f) to properly convert large values
  (beyond 32 bits) into strings on versions of Perl which are not compiled
  with support for 64-bit integers (Solaris?); reported by David Schweikert;



>How-To-Repeat:
na
>Fix:
patches:  I hope pr doesn't mung them.

diff -bBru ./ /var/tmp/amavisd254/
diff -bBru ./Makefile /var/tmp/amavisd254/Makefile
--- ./Makefile  Sun Dec 16 06:24:30 2007
+++ /var/tmp/amavisd254/Makefile        Thu Mar 13 15:40:58 2008
@@ -7,7 +7,7 @@
 # Based on amavisd ports makefile.
 
 PORTNAME=      amavisd-new
-PORTVERSION=   2.5.3
+PORTVERSION=   2.5.4
 PORTEPOCH=     1
 CATEGORIES=    security
 MASTER_SITES=  http://www.ijs.si/software/amavisd/ \
diff -bBru ./distinfo /var/tmp/amavisd254/distinfo
--- ./distinfo  Sun Dec 16 06:24:30 2007
+++ /var/tmp/amavisd254/distinfo        Thu Mar 13 15:42:32 2008
@@ -1,3 +1,3 @@
-MD5 (amavisd-new-2.5.3.tar.gz) = 5cf1a7a481855c6712378c0475058255
-SHA256 (amavisd-new-2.5.3.tar.gz) = f724654e15eab3fabce22873a5f2a0fcf2db9374ca84979cf066a29360ee533d
-SIZE (amavisd-new-2.5.3.tar.gz) = 789275
+MD5 (amavisd-new-2.5.4.tar.gz) = 9d482cb555e1e8c0834db6b90843b4a4
+SHA256 (amavisd-new-2.5.4.tar.gz) = 1b8410f023c94dcce61b0510fc737106f4c35a8cffee81c19364cdb86c48af2b
+SIZE (amavisd-new-2.5.3.tar.gz) = 791835


>Release-Note:
>Audit-Trail:
>Unformatted: