fix: CVE-2023-51764
All checks were successful
ci/woodpecker/push/woodpecker/2 Pipeline was successful
ci/woodpecker/push/woodpecker/1 Pipeline was successful
ci/woodpecker/push/woodpecker/3 Pipeline was successful

https://www.postfix.org/smtp-smuggling.html
This commit is contained in:
f 2024-01-04 13:47:06 -03:00
parent 511e61d5c6
commit 69f969bda5
No known key found for this signature in database
2 changed files with 4 additions and 2 deletions

View file

@ -22,6 +22,6 @@ matrix:
- ALPINE_VERSION: "3.19.0" - ALPINE_VERSION: "3.19.0"
POSTFIX_VERSION: "3.8.4" POSTFIX_VERSION: "3.8.4"
- ALPINE_VERSION: "3.18.4" - ALPINE_VERSION: "3.18.4"
POSTFIX_VERSION: "3.8.3" POSTFIX_VERSION: "3.8.4"
- ALPINE_VERSION: "3.17.5" - ALPINE_VERSION: "3.17.5"
POSTFIX_VERSION: "3.7.8" POSTFIX_VERSION: "3.7.9"

View file

@ -71,6 +71,8 @@ RUN postconf -e virtual_alias_maps=lmdb:/etc/postfix/maps/virtual
RUN postconf -e sender_canonical_classes=envelope_sender RUN postconf -e sender_canonical_classes=envelope_sender
RUN postconf -e recipient_canonical_classes=envelope_recipient,header_recipient RUN postconf -e recipient_canonical_classes=envelope_recipient,header_recipient
RUN postconf -e smtpd_client_connection_rate_limit=10 RUN postconf -e smtpd_client_connection_rate_limit=10
RUN postconf -e smtpd_forbid_bare_newline=yes
RUN postconf -e smtpd_forbid_bare_newline_exclusions='$mynetworks'
ARG ALPINE_VERSION=3.18.3 ARG ALPINE_VERSION=3.18.3
ARG BASE_IMAGE=gitea.nulo.in/sutty/monit ARG BASE_IMAGE=gitea.nulo.in/sutty/monit