Age | Commit message (Collapse) | Author | Files | Lines |
|
security fix for dovecot
Updated via patch provided by the submitter.
http://dovecot.org/list/dovecot-cvs/2007-March/008488.html
|
|
portability fixes for firefox and thunderbird
Revisions pulled up:
- pkgsrc/mail/thunderbird/distinfo 1.36
- pkgsrc/mail/thunderbird/patches/patch-dw 1.1
- pkgsrc/www/firefox/distinfo 1.63
- pkgsrc/www/firefox/patches/patch-dw 1.3
Module Name: pkgsrc
Committed By: joerg
Date: Wed Mar 7 22:02:26 UTC 2007
Modified Files:
pkgsrc/mail/thunderbird: distinfo
Added Files:
pkgsrc/mail/thunderbird/patches: patch-dw
Log Message:
Fix build on DragonFly as RNG_RNGInit was calling itself due to bad
linkage. I love platform dependent magic in each Makefile.
---
Module Name: pkgsrc
Committed By: joerg
Date: Wed Mar 7 22:05:22 UTC 2007
Modified Files:
pkgsrc/www/firefox: distinfo
Added Files:
pkgsrc/www/firefox/patches: patch-dw
Log Message:
Merge patch-dw from thunderbird to fix build on DragonFly.
|
|
compatibility fix for cyrus-imapd
Revisions pulled up:
- pkgsrc/mail/cyrus-imapd/Makefile 1.70
- pkgsrc/mail/cyrus-imapd/distinfo 1.27
- pkgsrc/mail/cyrus-imapd/patches/patch-al 1.3
Module Name: pkgsrc
Committed By: obache
Date: Fri Mar 9 14:46:08 UTC 2007
Modified Files:
pkgsrc/mail/cyrus-imapd: Makefile distinfo
pkgsrc/mail/cyrus-imapd/patches: patch-al
Log Message:
compatibility fix for SASL 2.1.22.
Taken from:
https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/cyrus/imtest/imtest.c.diff?r1=1.107&r2=1.108
Bump PKGREVISION.
Reported by Jukka Salmi in PR 35959.
|
|
security update for thunderbird
Revisions pulled up:
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.23
- pkgsrc/mail/thunderbird/PLIST patch
- pkgsrc/mail/thunderbird/distinfo patch
- pkgsrc/mail/thunderbird/patches/patch-ap patch
- pkgsrc/mail/thunderbird/patches/patch-ax patch
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.9
Module Name: pkgsrc
Committed By: ghen
Date: Fri Mar 2 14:12:25 UTC 2007
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST
distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
pkgsrc/mail/thunderbird/patches: patch-ap patch-ax
Log Message:
Update thunderbird and thunderbird-gtk1 to 1.5.0.10. Fixed in this version:
MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow
MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.10.html
|
|
build/usability fixes for clamav
- pkgsrc/mail/clamav/Makefile 1.69 via patch
- pkgsrc/mail/clamav/options 1.1
- pkgsrc/mail/p5-Mail-ClamAV/Makefile 1.21
- pkgsrc/mail/p5-Mail-ClamAV/distinfo 1.7
Module Name: pkgsrc
Committed By: wiz
Date: Wed Feb 21 22:10:47 UTC 2007
Modified Files:
pkgsrc/mail/p5-Mail-ClamAV: Makefile distinfo
Log Message:
Update to 0.20:
- Updated for new clamav release 0.90
---
Module Name: pkgsrc
Committed By: xtraeme
Date: Wed Feb 28 20:42:05 UTC 2007
Modified Files:
pkgsrc/mail/clamav: Makefile
Added Files:
pkgsrc/mail/clamav: options.mk
Log Message:
Disable --enable-experimental by default, because it does not work
correctly with sparc64.
Make it an option: clamav-experimental.
Move all options into the options.mk file.
|
|
security update for spamassassin
- pkgsrc/mail/spamassassin/Makefile 1.78-1.79
- pkgsrc/mail/spamassassin/distinfo 1.43
Module Name: pkgsrc
Committed By: ghen
Date: Thu Feb 8 09:30:27 UTC 2007
Modified Files:
pkgsrc/mail/spamassassin: Makefile
Log Message:
Put rule file updates in ${VARBASE}/spamassassin instead of ${VARBASE}. Bump
PKGREVISION.
---
Module Name: pkgsrc
Committed By: heinz
Date: Thu Feb 15 21:43:43 UTC 2007
Modified Files:
pkgsrc/mail/spamassassin: Makefile distinfo
Log Message:
Updated to version 3.1.8.
Pkgsrc changes:
- some cleanup of the Makefile to shut up a few pkglint notes and warnings
(USE_TOOLS, SUBST_CLASSES).
Changes since version 3.1.7:
============================
3.1.8 is a major bug-fix release, including a potential DoS. The major
highlights are:
- bug 5318: fix for CVE-2007-0451: possible DoS due to incredibly
long URIs found in the message content.
- bug 5240: disable perl module usage in update channels unless
--allowplugins is specified
- bug 5288: files with names starting/ending in whitespace weren't usable
- bug 5056: remove Text::Wrap related code due to upstream issues
- bug 5145: update spamassassin and sa-learn to better deal with STDIN
- bug 5140 and 5179: improvements and bug fixes related to DomainKeys
and DKIM support
- several updates for Received header parsing
- several documentation updates and random taint-variable related issues
|
|
security update for clamav
Revisions pulled up:
- pkgsrc/mail/clamav/Makefile 1.67
- pkgsrc/mail/clamav/PLIST 1.18
- pkgsrc/mail/clamav/distinfo 1.41
- pkgsrc/mail/clamav/patches/patch-aa removed
- pkgsrc/mail/clamav/patches/patch-ab removed
- pkgsrc/mail/clamav/patches/patch-ad 1.11
- pkgsrc/mail/clamav/patches/patch-af 1.3
- pkgsrc/mail/clamav/patches/patch-ah 1.8
Module Name: pkgsrc
Committed By: xtraeme
Date: Fri Feb 16 14:40:41 UTC 2007
Modified Files:
pkgsrc/mail/clamav: Makefile PLIST distinfo
pkgsrc/mail/clamav/patches: patch-ad patch-af patch-ah
Removed Files:
pkgsrc/mail/clamav/patches: patch-aa patch-ab
Log Message:
Update to 0.90:
The 0.9x series introduces lots of improvements in terms of detection
rate and performance, like support for many new packers and decryptors,
RAR3 and SIS archives, and a new phishing signatures format that proves
to be very effective.
|
|
security update for fetchmail
Revisions pulled up:
- pkgsrc/mail/fetchmail/Makefile 1.159
- pkgsrc/mail/fetchmail/PLIST 1.11
- pkgsrc/mail/fetchmail/distinfo 1.35
- pkgsrc/mail/fetchmail/patches/patch-aa removed
- pkgsrc/mail/fetchmail/patches/patch-ab 1.16
- pkgsrc/mail/fetchmail/patches/patch-ac removed
- pkgsrc/mail/fetchmail/patches/patch-ad removed
- pkgsrc/mail/fetchmail/patches/patch-ae removed
- pkgsrc/mail/fetchmail/patches/patch-ah removed
- pkgsrc/mail/fetchmail/patches/patch-ai removed
- pkgsrc/mail/fetchmail/patches/patch-aj removed
- pkgsrc/mail/fetchmail/patches/patch-al removed
- pkgsrc/mail/fetchmailconf/Makefile 1.69, 1.70
- pkgsrc/mail/fetchmailconf/PLIST 1.2
Module Name: pkgsrc
Committed By: rillig
Date: Sun Jan 7 09:14:16 UTC 2007
Modified Files:
pkgsrc/mail/fetchmailconf: Makefile
Log Message:
Mechanically replaced man/* with ${PKGMANDIR}/* in the definition of
INSTALLATION_DIRS, as well as all occurrences of ${PREFIX}/man with
${PREFIX}/${PKGMANDIR}.
Fixes PR 35265, although I did not use the patch provided therein.
---
Module Name: pkgsrc
Committed By: tron
Date: Wed Jan 17 14:29:12 UTC 2007
Modified Files:
pkgsrc/mail/fetchmail: Makefile PLIST distinfo
pkgsrc/mail/fetchmail/patches: patch-ab
pkgsrc/mail/fetchmailconf: Makefile PLIST
Removed Files:
pkgsrc/mail/fetchmail/patches: patch-aa patch-ac patch-ad patch-ae
patch-ah patch-ai patch-aj patch-al
Log Message:
Update "fetchmail" and "fetchmailconf" packages to version 6.3.6.
The list of changes since version 6.2.5.5 is too large to mention here.
The new version provides a fix for the vulnerability reported in the
fetchmail-SA-2006-02.txt advisory.
|
|
existing patches for earlier Solaris versions. Bump PKGREVISION.
|
|
|
|
greetdelay introduces a small delay before an SMTP greeting. It can
also optionally enforce RFC 2821's recommendation that SMTP clients
not send any commands before receiving the greeting message.
With a delay of 30s it has done me a world of good.
|
|
* Update qregex patch (PR pkg/34760) to 20060423:
- qregex adds the matched regex pattern to its log entries if the
LOGREGEX environment variable is set.
* Update realrcptto patch to 20061210:
- Logging uses substdio_puts() and substdio_flush() instead of
substdio_putsflush(). This makes log entries less likely to be
interleaved. Thanks to Matthew Dempsky for finding this.
- For QMAILRRTENYALL, use error code 554 after DATA, not 550.
Thanks to ... sorry, I lost track of who found this.
- Log stat() errors for .qmail files. Thanks to Chris Bensend for
suggesting this.
* Update tls-smtpauth combined patch to 20060105. TLS changes:
- bug: qmail-remote loops on malformed server response (B. Shupp,
A. Meltzer)
- no STARTTLS advertised when control/servercert.pem absent (Jason
Haar)
- control/notlshosts (Albert Weichselbraun)
- control/tlshosts/exhaustivelist
- scripts honor conf-users (Sven Verdoolaege)
- strerror declaration in tls.c compile problem (Renato Botelho,
Bill Shupp)
- chown uid.gid deprecated, should be uid:gid (Bill Shupp)
SMTP AUTH changes:
- includes the evaluation of the 'Auth' and the 'Size' parameter
in the 'Mail From:' command.
- uses DJB functions to copy FDs.
- corrects some minor mistakes displaying the 'Auth' userid.
- uses keyword "ESMTPA" in Received header in case of authentication
to comply with RFC 3848.
pkgsrc changes:
* Note SPECIAL_PERMS on qmail-queue binary (from dsainty@).
|
|
symlinks properly. Add a MESSAGE to this effect, addressing PR
pkg/30904. Bump PKGREVISION.
|
|
- Fixed text files to not overwrite the "text/top" and "text/bottom"
files unconditionally. Also rewrote places where the filename was
duplicated in the tags.
- (Un)subscribe requests initiated and confirmed by a moderator are now
marked in the Log as "+mod" or "-mod". This is accomplished by the
addition of another pair of subscribe/unsubscribe confirmation
commands ("rc.cookie" and "wc.cookie") to ezmlm-manage to
differentiate between moderated (un)subscribe requests and
(un)subscribe requests iniated and confirmed by a moderator.
|
|
2.3.0 provides the new printing function and new mail notification by
the tray icon. 2.3.0 also includes various usability improvements.
In Win32 version, the included GTK+ library has been updated to the
latest 2.10.6, and it introduces the improvements of usability and
bugfixes.
|
|
packages which have it active by default.
|
|
or USE_X11BASE set, but don't include mk/x11.buildlink3.mk directly or
via buildlink3.mks
- introduce BUILDLINK_PREFIX.libXpm as alias for BUILDLINK_PREFIX.xpm
in the !modular case
- fix some cases where the check for libX11 couldn't work at all by using
C++ for compilation without including the proper headers
Verified using a full X11_TYPE=xorg bulk build without additional
breakage. Discussed with salo@, wiz@ and send to packages@ for feedback.
|
|
to prevent their being erroneously installed. Found by bulk build.
No change to PLIST, hence no PKGREVISION bump.
|
|
From Peter Avalos.
|
|
|
|
package usable for unprivileged builds. PKGREVISION++
|
|
MFSA 2006-74 Mail header processing heap overflows
MFSA 2006-73 Mozilla SVG Processing Remote Code Execution
MFSA 2006-72 XSS by setting img.src to javascript: URI
MFSA 2006-71 LiveConnect crash finalizing JS objects
MFSA 2006-70 Privilege escallation using watch point
MFSA 2006-68 Crashes with evidence of memory corruption (rv:1.8.0.9/1.8.1.1)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.9.html
|
|
via bug report and patch from Nathan Arthur. Bump PKGREVISION.
|
|
|
|
packages with the modular Xorg equivalent. Those are falling back
to the old location by default, so this commmit doesn't change
dependencies.
graphics/xpm ==> x11/libXpm
fonts/Xft2 ==> x11/libXft
x11/Xfixes ==> x11/libXfixes
x11/xcursor ==> x11/libXcursor
x11/Xrender ==> x11/libXrender
x11/Xrandr ==> libXrandr
|
|
|
|
- add ignore_stderr option to MDA_external destination. Thanks: Daniel
Burrows.
- documentation cleanups.
|
|
Too many changes to list here, see the HISTORY file for details.
|
|
- On Redhat Linux, a Postfix daemon could lock up while logging a
warning from a signal handler before exiting. This is remedied
by a low-cost re-entrancy guard for signal handlers that never
return.
- Message headers longer than 65535 broke the Milter protocol. To
make matters worse the cleanup server could then dereference a
null pointer. When Milter support is enabled, the length of each
message header is now limited to 60000.
- Several fixes to improve worst-case behavior of the (new) queue
manager with multi-recipient mail. The queue manager now reads
new recipients earlier from the queue file, instead of becoming
starved while waiting for the slowest in-memory recipients to
complete; and it now reads recipients in smaller chunks to avoid
spending too much time not talking to delivery agents.
- With remote SMTP server tarpit delays larger than the Postfix
SMTP client's smtp_rset_timeout (default: 20s), the client would
get out of sync with the server while reusing a connection. The
symptoms were "recipient rejected .. in reply to DATA".
- On FreeBSD 6.2, some Postfix daemon processes would complain once
with "Error 0" after "postfix reload" and then recover. This
warning is now logged only when the problem persists.
|
|
This version improves scanning of mail and tar files.
|
|
issues from mutt GIT repo. Bump PKGREVISION.
|
|
issues from mutt GIT repo. Bump PKGREVISION.
ok <tron>
|
|
is pgsql, close PR 34230.
|
|
|
|
|
|
* 2.3.0beta6 (development)
* The new printing function was implemented.
- Each page is now rendered by Cairo.
- The native print dialog is used.
- Page number is printed for each page.
- The option "Use external program for printing" was added.
- The printing of MIME part was implemented.
* Cc: was added to the header view.
* The option "Inherit recipients on reply to self messages" was added.
* Pilot-link (libpisock) 0.12 was supported.
* The window position and the layout of the 'Add Address' dialog was
modified.
* The default directory of the file selection dialog was changed
(in Win32, 'My Documents' is used. In Unix, the home directory is used).
* The UI is now updated periodically on manual filtering.
* The new mail notification on the tray icon is reset when any message
is read now.
* The encoding setting of the message view in new window is enabled also
on reply.
* Win32: The bug that the window was sometimes not displayed at the top
when the tray icon was clicked was fixed.
* Win32: The issue that the progress dialog was not updated while sending
large messages was fixed.
|
|
|
|
|
|
|
|
|
|
|
|
pkgsrc change:
* separate ja-patch into ja-patch and lite-patch.
ChangLog:
Version 1.4.9a - 3 December 2006
--------------------------------
- Security: Multiple IE cross site scripting issues related to the
widely acceptation of the word expression and url by IE.
- Security: Removing @import when sanitizing html mail.
Version 1.4.9 - 2 December 2006
-------------------------------
- Drop obsolete script plugins/make_archive.pl.
- Fixed Google translate form in translate plugin. Added new language
pairs.
- Added XMAGICTRASH extension tests in configtest utility. Removed code
that handled 'inbox.trash' as special folder in courier (#1354393).
- Allowed moving folders to trash in courier.
- Fix misspelled constant PREG_SPLIT_NI_EMPTY in sqimap_get_message
(#1543573).
- Provide View Unsafe Images link on viewing a text/html attachment.
- Fix variable typo in folders_create.php (#1545316).
- Added Courier IMAP OUTBOX check to configtest utility.
- If mailbox name starts with slash or contains ../, error message is
generated. Safety check for insecure default UW IMAP setup (#1557078).
- Ignore message copy errors when messages are deleted. Allows to delete
messages when quota is exceeded (#614887, #646386, #1446026).
- Fixed unintended literal fetching (#1562271).
- Added global file based address book listing controls. Added line
length configuration option for local_file address book backend
(#1181561). Added address book data integrity checks in local_file
address book backend. Fixed eregi and object notices in local_file
and database address book backends. Added additional address book
field support.
- Fixed variable corruption in configtest utility.
- Checked if configuration file is readable in configuration utility
(#1568355).
- Special mailboxes marked in special_mailbox hook are no longer listed
in folder delete, rename and subscription options.
- Translate plugin: prevent PHP notice when viewing empty message.
- Add CEST and MEST (non-standard) timezone codes for +0200.
- Add <label> to From field in message list.
- Add support for parsing SpamAssassin's X-Spam-Status header (#1589520).
- Fix in bodystructure parser code related to strings ending with an
escape character.
- Added "attachment */*" hook
- Added third parameter $logout_link to logout_error hook that allows
plugin control over login page URI displayed on login error page.
- Security: close cross site scripting vulnerability in draft, compose
and mailto functionality [CVE-2006-6142].
- Security: work around an issue in Internet Explorer that would guess
the mime type of a file based on contents, not Content-Type header.
|
|
Bump PKGREVISION.
|
|
ChangLog:
Version 1.4.9a - 3 December 2006
--------------------------------
- Security: Multiple IE cross site scripting issues related to the
widely acceptation of the word expression and url by IE.
- Security: Removing @import when sanitizing html mail.
Version 1.4.9 - 2 December 2006
-------------------------------
- Drop obsolete script plugins/make_archive.pl.
- Fixed Google translate form in translate plugin. Added new language
pairs.
- Added XMAGICTRASH extension tests in configtest utility. Removed code
that handled 'inbox.trash' as special folder in courier (#1354393).
- Allowed moving folders to trash in courier.
- Fix misspelled constant PREG_SPLIT_NI_EMPTY in sqimap_get_message
(#1543573).
- Provide View Unsafe Images link on viewing a text/html attachment.
- Fix variable typo in folders_create.php (#1545316).
- Added Courier IMAP OUTBOX check to configtest utility.
- If mailbox name starts with slash or contains ../, error message is
generated. Safety check for insecure default UW IMAP setup (#1557078).
- Ignore message copy errors when messages are deleted. Allows to delete
messages when quota is exceeded (#614887, #646386, #1446026).
- Fixed unintended literal fetching (#1562271).
- Added global file based address book listing controls. Added line
length configuration option for local_file address book backend
(#1181561). Added address book data integrity checks in local_file
address book backend. Fixed eregi and object notices in local_file
and database address book backends. Added additional address book
field support.
- Fixed variable corruption in configtest utility.
- Checked if configuration file is readable in configuration utility
(#1568355).
- Special mailboxes marked in special_mailbox hook are no longer listed
in folder delete, rename and subscription options.
- Translate plugin: prevent PHP notice when viewing empty message.
- Add CEST and MEST (non-standard) timezone codes for +0200.
- Add <label> to From field in message list.
- Add support for parsing SpamAssassin's X-Spam-Status header (#1589520).
- Fix in bodystructure parser code related to strings ending with an
escape character.
- Added "attachment */*" hook
- Added third parameter $logout_link to logout_error hook that allows
plugin control over login page URI displayed on login error page.
- Security: close cross site scripting vulnerability in draft, compose
and mailto functionality [CVE-2006-6142].
- Security: work around an issue in Internet Explorer that would guess
the mime type of a file based on contents, not Content-Type header.
|
|
and also remove inexistent tools.
Bump PKGREVISION.
|
|
|
|
|
|
variable) with the portable equivalent. Bump revision.
|
|
Found by Ond?ej T?ma (sorry for the missing chars) and analyzed by
Lasse Hillerøe Petersen.
|
|
changes:
-bugfixes
-translation updates
|