Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
USE_DESTDIR.
|
|
1. The ACL conditions regex and mime_regex now capture substrings
into numeric variables $regex1 to 9, like the "match" expansion condition.
2. New $callout_address variable records the address used for a spam=,
malware= or verify= callout.
3. Transports now take a "max_parallel" option, to limit concurrency.
4. Expansion operators ${ipv6norm:<string>} and ${ipv6denorm:<string>}.
The latter expands to a 8-element colon-sep set of hex digits including
leading zeroes. A trailing ipv4-style dotted-decimal set is converted
to hex. Pure ipv4 addresses are converted to IPv4-mapped IPv6.
The former operator strips leading zeroes and collapses the longest
set of 0-groups to a double-colon.
5. New "-bP config" support, to dump the effective configuration.
6. New $dkim_key_length variable.
7. New base64d and base64 expansion items (the existing str2b64 being a
synonym of the latter). Add support in base64 for certificates.
8. New main configuration option "bounce_return_linesize_limit" to
avoid oversize bodies in bounces. The dafault value matches RFC
limits.
9. New $initial_cwd expansion variable.
|
|
+ Enabled utf-8 mailbox support for IMAP.
+ New expandos %r and %R for comma separated list of To: and Cc:
recipients respectively.
+ Improved support for internationalized email and SMTPUTF8 (RFC653[0-3]).
! $use_idn has been renamed to $idn_decode.
+ $idn_encode controls whether outgoing email address domains will
be IDNA encoded. If your MTA supports it, unset to use utf-8
email address domains.
+ The S/MIME message digest algorithm is now specified using the
option $smime_sign_digest_alg. Note that $smime_sign_command
should be modified to include "-md %d". Please see
contrib/smime.rc.
+ $reflow_space_quotes allows format=flowed email quotes to be
displayed with spacing between them.
! multipart draft files are now supported.
+ The "-E" command line argument causes mutt to edit draft or include files.
All changes made in mutt will be saved back out to those files.
+ $resume_draft_files and $resume_edited_draft_files control how
mutt processes draft files.
+ For classic gpg mode, $pgp_decryption_okay should be set to verify
multipart/encrypted are actually encrypted. Please see
contrib/gpg.rc for the suggested value.
! mailto URL header parameters by default are now restricted to
'body' and 'subject'.
+ mailto_allow and unmailto_allow can be used to add or remove
allowed mailto header parameters.
! The method of setting $hostname has been changed. Rather than
scanning /etc/resolv.conf, the domain will now be determined using
DNS calls.
|
|
+ Enabled utf-8 mailbox support for IMAP.
+ New expandos %r and %R for comma separated list of To: and Cc:
recipients respectively.
+ Improved support for internationalized email and SMTPUTF8 (RFC653[0-3]).
! $use_idn has been renamed to $idn_decode.
+ $idn_encode controls whether outgoing email address domains will
be IDNA encoded. If your MTA supports it, unset to use utf-8
email address domains.
+ The S/MIME message digest algorithm is now specified using the
option $smime_sign_digest_alg. Note that $smime_sign_command
should be modified to include "-md %d". Please see
contrib/smime.rc.
+ $reflow_space_quotes allows format=flowed email quotes to be
displayed with spacing between them.
! multipart draft files are now supported.
+ The "-E" command line argument causes mutt to edit draft or include files.
All changes made in mutt will be saved back out to those files.
+ $resume_draft_files and $resume_edited_draft_files control how
mutt processes draft files.
+ For classic gpg mode, $pgp_decryption_okay should be set to verify
multipart/encrypted are actually encrypted. Please see
contrib/gpg.rc for the suggested value.
! mailto URL header parameters by default are now restricted to
'body' and 'subject'.
+ mailto_allow and unmailto_allow can be used to add or remove
allowed mailto header parameters.
! The method of setting $hostname has been changed. Rather than
scanning /etc/resolv.conf, the domain will now be determined using
DNS calls.
|
|
|
|
This is a bugfix-only release with various important fixes on top of v2.2.22.
- Various fixes to doveadm. Especially running commands via
doveadm-server was broken.
- director: Fixed user weakness getting stuck in some situations
- director: Fixed a situation where directors keep re-sending
different states to each others and never becoming synced.
- director: Fixed assert-crash related to a slow "user killed" reply
- Fixed assert-crash related to istream-concat, which could have
been triggered at least by a Sieve script.
|
|
Update DEPENDS
Upstream changes:
1.300027 2016-04-03 10:02:52-04:00 America/New_York
- no changes since 1.300026
- SMTP transport now uses Net::SMTP for SSL and STARTTLS support
1.300026 2016-03-21 13:50:22-04:00 America/New_York (TRIAL RELEASE)
- another tweak to Net::SMTP and Test::MockObject, thanks to Matthew
Horsfall
1.300025 2016-03-19 17:11:34-04:00 America/New_York (TRIAL RELEASE)
- tweak how we load Net::SMTP to avoid problems when testing with a
Test::MockObject-mocked SMTP client
1.300024 2016-03-19 14:13:16-04:00 America/New_York (TRIAL RELEASE)
- Net::SMTP 3.07 is now required, both for SSL support and for a fix
to datasend implementation referenced in 1.300019 changes
1.300023 2016-03-19 14:06:51-04:00 America/New_York (TRIAL RELEASE)
- Email::Sender::Transport::SMTP now uses Net::SMTP for SSL
connections, and for a STARTTLS implementation
|
|
Upstream changes:
2.210 2016-03-05 12:16:16-05:00 America/New_York
- fix a bug where folding treated the string "0" as an empty string
(thanks, Pali Roh獺r)
2.209 2015-10-11 22:57:04-04:00 America/New_York (TRIAL RELEASE)
- avoid opportunity for pathological backtracking behavior on
malformed messages
|
|
Upstream changes:
1.200 2016-03-27 17:36:57-04:00 America/New_York
- skip more tests when Net::Domain::TLD not available, as required
1.199 2016-03-27 09:58:03-04:00 America/New_York
- More "no MX found" fixes (thanks, Troy Morehouse)
- treat restricted/reserved TLDs (invalid, test, example, localhost)
as invalid (thanks, Steve Bertrand!)
- Made first mention of various external modules be L<> linked.
- Added link to RFC822 to SEE ALSO
- Various typo and formatting fixes
|
|
This release brings:
- re-license as 3-clause BSD
- explicitly disable SSLv2 (security)
- functionality fix
- better support for IPv6
- better support for Gtk+ 3
- build fixes
- Spanish translation
|
|
handling.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* Sync with thunderbird-38.7.1
|
|
Changelog
Changed Disabled Graphite font shaping library (not relevant for pkgsrc)
|
|
|
|
Found with an unprivileged bootstrap on NetBSD/amd64 (--prefer-pkgsrc yes)
|
|
|
|
The manual is generated if docbook2* is found on the system.
We do not have these in pkgsrc. They might be found somewhere else
on the system and the install step will then break due to
broken PLIST. Disabling the manual fixes the install step on such
systems.
|
|
Very surprisingly, postfix's build hard-codes shared library behavior
in a giant case statement not only per OS but per version, essentially
open-coding libtool while not being complete. This commit copies the
netbsd-6 flags to netbsd-5, as a minimal change during the freeze to
let this build on netbsd-5 (where it then works fine).
|
|
* Sync with thunderbird-38.7.0
|
|
Changelog:
Fixed in Thunderbird 38.7
2016-37 Font vulnerabilities in the Graphite 2 library
2016-35 Buffer overflow during ASN.1 decoding in NSS
2016-34 Out-of-bounds read in HTML parser following a failed allocation
2016-31 Memory corruption with malicious NPAPI plugin
2016-27 Use-after-free during XML transformations
2016-24 Use-after-free in SetBody
2016-23 Use-after-free in HTML5 string parser
2016-20 Memory leak in libstagefright when deleting an array during MP4 processing
2016-17 Local file overwriting and potential privilege escalation through CSP reports
2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)
|
|
LIBOPENDKIM: Make strict header checking non-destructive.
The last change to this code resulted in failing signatures.
2.10.2 2015/05/10
Fix bug #221: Report a DKIM result of "policy" if MinimumKeyBits
or UnprotectedKey cause the signature to result in a "pass"
override.
Fix bug #227: Revert removal of SenderHeaders configuration setting.
Document that it is now limited to signature selection.
LIBOPENDKIM: Fix bug #226: Deal with header fields that are
wrapped before there's any content.
CONTRIB: Update to contrib/systemd/opendkim.service.in
|
|
|
|
|
|
version 2.13: Mon 7 Mar 15:48:28 CET 2016
Fixes:
- not all information was extracted from the Apache tables.
[Thomas Eckardt]
|
|
|
|
|
|
|
|
* Add option to select gnupg2 and gnupg21
* Update MASTER_SITES
Changelog:
Enigmail 1.9.1
Released 2016-03-06, works with Thunderbird 38.0 & newer and SeaMonkey 2.35 & newer.
Notable Changes
This is a bugfix release
Important Note
This version requires GnuPG 2.0.7 or newer. GnuPG 1.4.x is not supported anymore.
Bugs fixed
Check the list of fixed defects.
Enigmail 1.9
Released 2016-02-24, works with Thunderbird 38.0 & newer and SeaMonkey 2.35 & newer.
Notable Changes
Added support for GnuPG 2.1
Backup and restore of keys and Enigmail settings
Messages are sent using PGP/MIME by default
Several new dialog windows that improve usability
Added support for protected headers (off by default)
There is no binary component anymore - this version runs on all platforms for which Thunderbird and GnuPG are available.
Important Note
This version requires GnuPG 2.0.7 or newer. GnuPG 1.4.x is not supported anymore.
Bugs fixed
Many bugs were fixed. Check the list of fixed defects.
|
|
|
|
No chnage except version.
|
|
not clear all bits. (Can happen on Linux --
https://bugs.launchpad.net/ubuntu/+source/coreutils/+bug/67583)
|
|
Exim version 4.86.2
-------------------
Portability relase of 4.86.1
Exim version 4.86.1
-------------------
HS/04 Add support for keep_environment and add_environment options.
This fixes CVE-2016-1531.
All installations having Exim set-uid root and using 'perl_startup' are
vulnerable to a local privilege escalation. Any user who can start an
instance of Exim (and this is normally *any* user) can gain root
privileges. If you do not use 'perl_startup' you *should* be safe.
New options
-----------
We had to introduce two new configuration options:
keep_environment =
add_environment =
Both options are empty per default. That is, Exim cleans the complete
environment on startup. This affects Exim itself and any subprocesses,
as transports, that may call other programs via some alias mechanisms,
as routers (queryprogram), lookups, and so on. This may affect used
libraries (e.g. LDAP).
** THIS MAY BREAK your existing installation **
If both options are not used in the configuration, Exim issues a warning
on startup. This warning disappears if at least one of these options is
used (even if set to an empty value).
keep_environment should contain a list of trusted environment variables.
(Do you trust PATH?). This may be a list of names and REs.
keep_environment = ^LDAP_ : FOO_PATH
To add (or override) variables, you can use add_environment:
add_environment = <; PATH=/sbin:/usr/sbin
New behaviour
-------------
Now Exim changes it's working directory to / right after startup,
even before reading it's configuration. (Later Exim changes it's working
directory to $spool_directory, as usual.)
Exim only accepts an absolute configuration file path now, when using
the -C option.
|
|
* Sync with thunderbird 38.6.0
|
|
Changelog:
Fixed Various security fixes.
Fixed Filters ran on a different folder than selected
Fixed For Windows systems on roaming profiles, could not display messages after Thunderbird update (related to Lightning updates)
Fixed in Thunderbird 38.6
2016-14 Vulnerabilities in Graphite 2
2016-03 Buffer overflow in WebGL after out of memory allocation
2016-01 Miscellaneous memory safety hazards (rv:44.0 / rv:38.6)
2015-150 MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature
|
|
anyway, leading to build sadness. Add --without-ruby to CONFIGURE_ARGS
to match the current intent.
|
|
|
|
PostSRSd provides the Sender Rewriting Scheme (SRS) via TCP-based
lookup tables for Postfix. SRS is needed if your mail server acts
as forwarder.
|
|
|
|
|