I have just uploaded 4.74rc2 to experimental. Worthwile upstream fixes relative to 4.73rc1
If a non-debug daemon was invoked with a non-whitelisted macro, then
logs from after attempting delivery would be silently lost, including
for successful delivery. This log-loss bug was introduced in 4.73 as
part of the security lockdown.
I have just uploaded 4.74rc2 to experimental. Worthwile upstream fixes relative to 4.73rc1
If a non-debug daemon was invoked with a non-whitelisted macro, then
logs from after attempting delivery would be silently lost, including
for successful delivery. This log-loss bug was introduced in 4.73 as
part of the security lockdown.
-C /dev/null works again.
CVE-2011-0017