Jean-Samuel Reynaud noticed a programming error in the IPv6 handling code of Postfix when /proc/net/if_inet6 is not available (which is the case in Ubuntu since Postfix runs in a chroot). If "permit_mx_backup" was enabled in the "smtpd_recipient_restrictions", Postfix turned into an open relay, i. e. erroneously permitted the delivery of arbitrary mail to any MX host which has an IPv6 address.
Tuan committed postfix-2.1.5-r2 with ipv6 patches version 1.26. Security please vote on GLSA. I tend to vote NO.
Reopneing for stable marking. Thx Tuan. Arches please test and mark stable.
sparc stable. removing mips too since it was done by `kumba yesterday.
Stable on ppc.
Stable on alpha.
amd64 stable
GLSA vote... I would tend to vote NO too, but I'm lazy. Let's hear a third opinion.
Voting a full NO and closing then. It's more a bug than anything... Reopen if you disagree.
Already stable on hppa