Red Hat Product Errata RHSA-2011:0422 - Security Advisory

Issued:: 2011-04-06
Updated:: 2011-04-06

RHSA-2011:0422 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: postfix security update

Type/Severity

Security Advisory: Moderate

Topic

Updated postfix packages that fix two security issues are now available for
Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Description

Postfix is a Mail Transport Agent (MTA), supporting LDAP, SMTP AUTH (SASL),
and TLS.

It was discovered that Postfix did not flush the received SMTP commands
buffer after switching to TLS encryption for an SMTP session. A
man-in-the-middle attacker could use this flaw to inject SMTP commands into
a victim's session during the plain text phase. This would lead to those
commands being processed by Postfix after TLS encryption is enabled,
possibly allowing the attacker to steal the victim's mail or authentication
credentials. (CVE-2011-0411)

It was discovered that Postfix did not properly check the permissions of
users' mailbox files. A local attacker able to create files in the mail
spool directory could use this flaw to create mailbox files for other local
users, and be able to read mail delivered to those users. (CVE-2008-2937)

Red Hat would like to thank the CERT/CC for reporting CVE-2011-0411, and
Sebastian Krahmer of the SuSE Security Team for reporting CVE-2008-2937.
The CERT/CC acknowledges Wietse Venema as the original reporter of
CVE-2011-0411.

Users of Postfix are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the postfix service will be restarted automatically.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Red Hat Enterprise Linux Server 5 x86_64
Red Hat Enterprise Linux Server 5 ia64
Red Hat Enterprise Linux Server 5 i386
Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server - Extended Update Support 5.6 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 5.6 ia64
Red Hat Enterprise Linux Server - Extended Update Support 5.6 i386
Red Hat Enterprise Linux Server - Extended Update Support 4.8 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 ia64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 i386
Red Hat Enterprise Linux Server - AUS 5.6 x86_64
Red Hat Enterprise Linux Server - AUS 5.6 ia64
Red Hat Enterprise Linux Server - AUS 5.6 i386
Red Hat Enterprise Linux Workstation 5 x86_64
Red Hat Enterprise Linux Workstation 5 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Desktop 5 x86_64
Red Hat Enterprise Linux Desktop 5 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux for IBM z Systems 5 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.6 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390
Red Hat Enterprise Linux for Power, big endian 5 ppc
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.6 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8 ppc
Red Hat Enterprise Linux Server from RHUI 5 x86_64
Red Hat Enterprise Linux Server from RHUI 5 i386
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6 x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6 i386

Fixes

BZ - 456347 - CVE-2008-2937 postfix improper mailbox permissions
BZ - 674814 - CVE-2011-0411 postfix: SMTP commands injection during plaintext to TLS session switch

CVEs

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
ia64
postfix-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

Red Hat Enterprise Linux Server 4

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
x86_64
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
ia64
postfix-2.2.10-1.4.el4.ia64.rpm	SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-2.2.10-1.4.el4.ia64.rpm	SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm	SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm	SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
i386
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39

Red Hat Enterprise Linux Server - Extended Update Support 5.6

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
ia64
postfix-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

Red Hat Enterprise Linux Server - Extended Update Support 4.8

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
x86_64
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
ia64
postfix-2.2.10-1.4.el4.ia64.rpm	SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-2.2.10-1.4.el4.ia64.rpm	SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm	SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm	SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
i386
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39

Red Hat Enterprise Linux Server - AUS 5.6

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
ia64
postfix-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: b47a32c193459766c7ba551379617b5a5141e35f4eaaed8a206217c6e137fe43
postfix-pflogsumm-2.3.3-2.2.el5_6.ia64.rpm	SHA-256: 14fbf416aa150696d6fc5ccbdcf7c857db8bc19bedec83a8c41d062b978c9bfd
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3

Red Hat Enterprise Linux Workstation 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

Red Hat Enterprise Linux Workstation 4

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
x86_64
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
ia64
postfix-2.2.10-1.4.el4.ia64.rpm	SHA-256: c054ed37ebd996421ee37c4b1f3b0b9f14518f7e242d5d8406a075fdaa5f52c6
postfix-pflogsumm-2.2.10-1.4.el4.ia64.rpm	SHA-256: 38412cda2fbc1c0557496d3f32de8e437aa6be1c6a2cb2d58487e2d54d4203f2
i386
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39

Red Hat Enterprise Linux Desktop 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

Red Hat Enterprise Linux Desktop 4

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
x86_64
postfix-2.2.10-1.4.el4.x86_64.rpm	SHA-256: 331b6dec3b36bac5eea02c2433bf6b4bb6d8ad536d7373d1a618c76ae688fc62
postfix-pflogsumm-2.2.10-1.4.el4.x86_64.rpm	SHA-256: f698bbfc681ae8d77650fdbccc5dc8e45c0e6013a262977c3a4b5050aeb70334
i386
postfix-2.2.10-1.4.el4.i386.rpm	SHA-256: 08a694ed541c8ea00fbd55f429ade881696d157dae8a0e937dc960e5adc4b37b
postfix-pflogsumm-2.2.10-1.4.el4.i386.rpm	SHA-256: d192266ab874127657d3f50cd717256465ff4441f37aec1d8e00858593793b39

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
s390x
postfix-2.3.3-2.2.el5_6.s390x.rpm	SHA-256: 3fc0e9ca7277096282be360b8790e1edc99ab1a2cbe3f188c8c3cfffa13908f3
postfix-pflogsumm-2.3.3-2.2.el5_6.s390x.rpm	SHA-256: 33c41cc725e2adaa7e676d7b8dd0a67f8dbc495a34d7712237cb7c16c5e459a2

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
s390x
postfix-2.2.10-1.4.el4.s390x.rpm	SHA-256: 3dc6663de2535468d77eaaaff0b0bbde7f806b5577851c92b7f7a583f369aead
postfix-pflogsumm-2.2.10-1.4.el4.s390x.rpm	SHA-256: 27d441f3c7d6e9544c1cfb9f5993b747f9369a0c086652c186eda17febb1bb9e
s390
postfix-2.2.10-1.4.el4.s390.rpm	SHA-256: cda78658fc1f7f9aec4b638b6f2fffbb140cf50cf4cc884e74d31f5af612c982
postfix-pflogsumm-2.2.10-1.4.el4.s390.rpm	SHA-256: 2c8e3c8e573eea1dff57e1927d7144ed24aeecbefa7b286e29fab3a7ed7e78bd

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.6

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
s390x
postfix-2.3.3-2.2.el5_6.s390x.rpm	SHA-256: 3fc0e9ca7277096282be360b8790e1edc99ab1a2cbe3f188c8c3cfffa13908f3
postfix-pflogsumm-2.3.3-2.2.el5_6.s390x.rpm	SHA-256: 33c41cc725e2adaa7e676d7b8dd0a67f8dbc495a34d7712237cb7c16c5e459a2

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
s390x
postfix-2.2.10-1.4.el4.s390x.rpm	SHA-256: 3dc6663de2535468d77eaaaff0b0bbde7f806b5577851c92b7f7a583f369aead
postfix-pflogsumm-2.2.10-1.4.el4.s390x.rpm	SHA-256: 27d441f3c7d6e9544c1cfb9f5993b747f9369a0c086652c186eda17febb1bb9e
s390
postfix-2.2.10-1.4.el4.s390.rpm	SHA-256: cda78658fc1f7f9aec4b638b6f2fffbb140cf50cf4cc884e74d31f5af612c982
postfix-pflogsumm-2.2.10-1.4.el4.s390.rpm	SHA-256: 2c8e3c8e573eea1dff57e1927d7144ed24aeecbefa7b286e29fab3a7ed7e78bd

Red Hat Enterprise Linux for Power, big endian 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
ppc
postfix-2.3.3-2.2.el5_6.ppc.rpm	SHA-256: 9b4fc5b73461c843f6ac2704b28fdd2f0662e8fb658d6e9b4262503a8a1c0196
postfix-pflogsumm-2.3.3-2.2.el5_6.ppc.rpm	SHA-256: 39383b2b45c1f2c810bee302a7db44f80ccd1e5f41d6594b7dfa7505306c45d0

Red Hat Enterprise Linux for Power, big endian 4

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
ppc
postfix-2.2.10-1.4.el4.ppc.rpm	SHA-256: 8920e29720a02265893da454c9af0b92d9ec566e03650b04b2d611c1d55e756c
postfix-pflogsumm-2.2.10-1.4.el4.ppc.rpm	SHA-256: ae65c439b9688153e496b88025c77dd7c8963b3b250843cfe1ed5ec3ce9cc446

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.6

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
ppc
postfix-2.3.3-2.2.el5_6.ppc.rpm	SHA-256: 9b4fc5b73461c843f6ac2704b28fdd2f0662e8fb658d6e9b4262503a8a1c0196
postfix-pflogsumm-2.3.3-2.2.el5_6.ppc.rpm	SHA-256: 39383b2b45c1f2c810bee302a7db44f80ccd1e5f41d6594b7dfa7505306c45d0

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8

SRPM
postfix-2.2.10-1.4.el4.src.rpm	SHA-256: 755ce20ebf54dc4e4d745cd4076a8404629467846ac01a294f42be8e9e8045bd
ppc
postfix-2.2.10-1.4.el4.ppc.rpm	SHA-256: 8920e29720a02265893da454c9af0b92d9ec566e03650b04b2d611c1d55e756c
postfix-pflogsumm-2.2.10-1.4.el4.ppc.rpm	SHA-256: ae65c439b9688153e496b88025c77dd7c8963b3b250843cfe1ed5ec3ce9cc446

Red Hat Enterprise Linux Server from RHUI 5

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6

SRPM
postfix-2.3.3-2.2.el5_6.src.rpm	SHA-256: 51e88c23b4c5fef0f8b38668c356323f3c417b426605408718055fa99efcee0d
x86_64
postfix-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: fab923da688d598669305fb0f7e66748698589bf42c344d968c5aa871d5482c4
postfix-pflogsumm-2.3.3-2.2.el5_6.x86_64.rpm	SHA-256: 1ad2112293dda93dd145c4f7087d5e254d4ddb9a12217e24d5af782a5813b3f3
i386
postfix-2.3.3-2.2.el5_6.i386.rpm	SHA-256: b108408703d2e254cd4e35febf7810935f469c93d7350deac13383719def8358
postfix-pflogsumm-2.3.3-2.2.el5_6.i386.rpm	SHA-256: d30b4afd28895ef46efab8d55b057f8f4d319fe4a3eff8238d416ebe5693e700

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.