Ubuntu
postfix package

Add support to turn off the TLSv1.1 and TLSv1.2 protocols

Bug #991754 reported by Ralf Hildebrandt
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
postfix (Ubuntu)
Fix Released
Medium
Unassigned
Precise
Fix Released
High
Scott Kitterman
Ubuntu ubuntu-12.04.1
Quantal
Fix Released
Medium
Unassigned

Bug Description

Postfix stable release 2.9.2 is available.

This release adds support to turn off the TLSv1.1 and TLSv1.2 protocols. Introduced with OpenSSL version 1.0.1, these protocols are known to cause inter-operability problems, for example with some hotmail services.

http://www.postfix.org/announcements/postfix-2.9.2.html

ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: postfix 2.9.1-4
ProcVersionSignature: Ubuntu 3.2.0-24.37-virtual 3.2.14
Uname: Linux 3.2.0-24-virtual x86_64
ApportVersion: 2.0.1-0ubuntu7
Architecture: amd64
Date: Mon Apr 30 10:23:53 2012
ProcEnviron:
 TERM=xterm
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: postfix
UpgradeStatus: Upgraded to precise on 2012-04-29 (0 days ago)

See original description
Revision history for this message
Ralf Hildebrandt (ralf-hildebrandt) wrote :
Ralf Hildebrandt (ralf-hildebrandt)
description: updated
James Page (james-page)
Changed in postfix (Ubuntu):
status: New → Triaged
importance: Undecided → Wishlist
Revision history for this message
Ralf Hildebrandt (ralf-hildebrandt) wrote :

This is a real issue, since mail just stays in the queue, because the other side drops dead.

Revision history for this message
Ralf Hildebrandt (ralf-hildebrandt) wrote :

This is not a wishlist bug:

a) Wietse doesn't release patch releases to Postfix unless necessary
b) https://wiki.ubuntu.com/Bugs/Importance
    lists for severity "medium":
    "A bug that has a moderate impact on a core application"
   postfix is a core application and this issue renders TLS inoperational for a multitude of sites (when trying to send mail there)

Revision history for this message
Scott Kitterman (kitterman) wrote :

I agree it's not wishlist. I'll try and look at getting the update tested soon.

Changed in postfix (Ubuntu):
importance: Wishlist → Medium
Revision history for this message
James Page (james-page) wrote :

Ralf

Thanks for the additional information - you are quite correct and I see that Scott has already increased the Importance of this bug.

Revision history for this message
Christian Roessner (christian-roessner-net) wrote :

Please update the package to 2.9.2

James Page (james-page)
Changed in postfix (Ubuntu Precise):
milestone: none → ubuntu-12.04.1
status: New → Triaged
importance: Undecided → Medium
Changed in postfix (Ubuntu Quantal):
status: Triaged → Fix Released
Revision history for this message
James Page (james-page) wrote :

Quantal has 2.9.3 so marking fix released.

Scott/Lamont - are either of you working on an SRU for precise?

Revision history for this message
Scott Kitterman (kitterman) wrote : Re: [Bug 991754] Re: Add support to turn off the TLSv1.1 and TLSv1.2 protocols

I've started looking at it and I think this is perfect for the microversion
release exception we have for postfix. I continue to have trouble getting the
QR tests to pass on either the current package or the new ones. If someone
could run those and let me know they're OK, I'll prepare an upload.

Scott Kitterman (kitterman)
Changed in postfix (Ubuntu Precise):
importance: Medium → High
Stéphane Graber (stgraber)
Changed in postfix (Ubuntu Precise):
status: Triaged → Fix Committed
assignee: nobody → Scott Kitterman (kitterman)
Revision history for this message
Scott Kitterman (kitterman) wrote :

2.9.3 is in precise-updates.

Changed in postfix (Ubuntu Precise):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.