USN-6591-1 fixed vulnerabilities in Postfix. A fix with less risk of regression has been made available since the last update. This update updates the fix and aligns with the latest configuration guidelines regarding this vulnerability.
We apologize for the inconvenience.
Original advisory details:
Timo Longin discovered that Postfix incorrectly handled certain email line endings. A remote attacker could possibly use this issue to bypass an email authentication mechanism, allowing domain spoofing and potential spamming.
Please note that certain configuration changes are required to address this issue. They are not enabled by default for backward compatibility. Information can be found at https://www.postfix.org/smtp-smuggling.html.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-cdb" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-dev" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-doc" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-ldap" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-mysql" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-pcre" }, { "binary_version": "2.11.0-1ubuntu1.2+esm3", "binary_name": "postfix-pgsql" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-cdb" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-dev" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-doc" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-ldap" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-mysql" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-pcre" }, { "binary_version": "3.1.0-3ubuntu0.4+esm3", "binary_name": "postfix-pgsql" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-cdb" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-cdb-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-doc" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-ldap" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-ldap-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-lmdb" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-lmdb-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-mysql" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-mysql-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-pcre" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-pcre-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-pgsql" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-pgsql-dbgsym" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-sqlite" }, { "binary_version": "3.3.0-1ubuntu0.4+esm3", "binary_name": "postfix-sqlite-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-cdb" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-cdb-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-doc" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-ldap" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-ldap-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-lmdb" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-lmdb-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-mysql" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-mysql-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-pcre" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-pcre-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-pgsql" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-pgsql-dbgsym" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-sqlite" }, { "binary_version": "3.4.13-0ubuntu1.4", "binary_name": "postfix-sqlite-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-cdb" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-cdb-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-doc" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-ldap" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-ldap-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-lmdb" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-lmdb-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-mysql" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-mysql-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-pcre" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-pcre-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-pgsql" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-pgsql-dbgsym" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-sqlite" }, { "binary_version": "3.6.4-1ubuntu1.3", "binary_name": "postfix-sqlite-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-cdb" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-cdb-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-doc" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-ldap" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-ldap-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-lmdb" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-lmdb-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-mysql" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-mysql-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-pcre" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-pcre-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-pgsql" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-pgsql-dbgsym" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-sqlite" }, { "binary_version": "3.8.1-2ubuntu0.2", "binary_name": "postfix-sqlite-dbgsym" } ] }