| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 2048bit-genkey.patch | Set opendkim-genkey to default to 2048 bit sha-256 only keys based on current best practices | Scott Kitterman <scott@kitterman.com> | not-needed | |||
| nsupdate_output.patch | This patch addresses several issues with the nsupdate output: o Add the correct fields (v=DKIM1, etc) before the key o Properly break fields into 255 byte chunks o Add the possibility to restrict the key to email signing Based on an original patch by Marco Favero as posted at: https://sourceforge.net/p/opendkim/feature-requests/200/ |
yes | upstream | |||
| fix-miltertest-data.patch | miltertest: Fix broken mt.data() function | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| fix-miltertest-eom-check-smtpreply.patch | miltertest: Fix undefined behaviour in mt.eom_check() with MT_SMTPREPLY | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| fix-genzone-subdomains.patch | opendkim-genzone: Fix inverted logic in subdomains switch (-s) After a patch by Andreas Schulze that was only partially applied upstream. | David Bürgin <dbuergin@gluet.ch> | yes | upstream | other, https://github.com/trusteddomainproject/OpenDKIM/commit/ce640c310b88cbd35b2bc21a41e8e652319707dc | |
| suppress-brackets-syslog.patch | Suppress empty brackets in syslog startup message | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| cve-2020-12272.patch | LIBOPENDKIM: Confirm that the value of "d=" is properly formed. | Murray S. Kucherawy <msk@trusteddomain.org> | not-needed | upstream, https://github.com/trusteddomainproject/OpenDKIM/commit/14d54524e0a97d3fe9b80441907d7e356c9ded04 | ||
| opendkim-genkey-typo.patch | opendkim-genkey: Correct typo "restricted" in man page | Felix Stupp <felix.stupp@outlook.com> | yes | upstream | ||
| replace-headers.patch | Add missing ReplaceHeaders definition | Toby Ovod-Everett | yes | upstream | ||
| insheader.patch | Insert trace headers at index 0 | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| mlfi_close.patch | Reorder mlfi_close logic fixing use-after-free error | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| conf_refcnt.patch | opendkim/opendkim.c:dkimf_config_free(): don't assert conf->refcnt == 0 | yes | upstream | |||
| lua-5.3.patch | Add support for Lua 5.3 | Matt Domsch <matt@domsch.com> | yes | upstream | ||
| fix-RSA_Sign-call.patch | Fix signedness bug in RSA_Sign call | Martin Grimm <martin.grimm@to.com> | yes | upstream | ||
| rev-ares-deletion.patch | Delete Authentication-Results headers in reverse (CVE-2022-48521) | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| ares-missing-space.patch | Add missing space in Authentication-Results header | David Bürgin <dbuergin@gluet.ch> | yes | upstream | ||
| ftbfs-gcc-14-1075339.patch | Fix FTBFS with gcc-14 | Tim Woodall <debianbugs@woodall.me.uk> | no | debian | 2024-08-25 |