Package: opensmtpd-filter-rspamd Version: 0.1.7-1+b7 Severity: important Dear Maintainer,
when using OpenSMTPD and filter-rspamd, if someone tries to login with a username that contains the | character filter-rspamd crashes and brings OpenSMTPD down. I reported the bug here: https://github.com/OpenSMTPD/OpenSMTPD/issues/1213 While the protocol change is being committed in the OpenSMTPD repo, filter-rspamd already has the correct behavior + a workaround for current OpenSMTPD versions in 0.1.8, released yesterday: https://github.com/poolpOrg/filter-rspamd/commit/aec872dec91c16d4cd1a064d169dbad01d2b3bb5 https://github.com/poolpOrg/filter-rspamd/releases/tag/v0.1.8 Would it be possible to upgrade in Debian 11 the opensmtpd-filter-rspamd package to version 0.1.8 or include the commit linked above in the current version? Without the fix it is easy to bring down the entire SMTP server. Thanks -- System Information: Debian Release: 11.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.10.0-21-amd64 (SMP w/4 CPU threads) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: sysvinit (via /sbin/init) Versions of packages opensmtpd-filter-rspamd depends on: ii libc6 2.31-13+deb11u5 Versions of packages opensmtpd-filter-rspamd recommends: ii rspamd 2.7-1 opensmtpd-filter-rspamd suggests no packages. -- no debconf information
