Sendmail, Inc., and the Sendmail Consortium announce the availability of sendmail 8.14.5. This version fixes a few problems, including: * SMTP extensions are no longer cached across connections as the cache is based on hostname which may not be a unique identifier for a server, i.e., different machines may have the same hostname but provide different SMTP extensions. * An out-of-bounds access is avoided in case a resolver reply for a DNS map lookup returns a size larger than 1K. * The interrupt signal handler has been cleaned up to avoid invoking functions that are not signal-safe. * At most two AUTH lines are read from a server to avoid a DoS attack against the client (memory exhaustion). A complete list of changes can be found in the release notes[1] [1] http://www.sendmail.com/sm/open_source/download/8.14.5/?show_rs=true#RS ps: Patrick, I cc'd you cause you did the last bump, in case you're interested.
I did the bump but any help in maintaining sendmail is welcome. +*sendmail-8.14.5 (17 May 2011) + + 17 May 2011; Eray Aslan <eras@gentoo.org> +sendmail-8.14.5.ebuild, + +files/sendmail-8.14.5+db-5.0.patch: + Version bump - bug #367723 +