| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
From Peter Avalos.
|
|
|
|
package usable for unprivileged builds. PKGREVISION++
|
|
MFSA 2006-74 Mail header processing heap overflows
MFSA 2006-73 Mozilla SVG Processing Remote Code Execution
MFSA 2006-72 XSS by setting img.src to javascript: URI
MFSA 2006-71 LiveConnect crash finalizing JS objects
MFSA 2006-70 Privilege escallation using watch point
MFSA 2006-68 Crashes with evidence of memory corruption (rv:1.8.0.9/1.8.1.1)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.9.html
|
|
via bug report and patch from Nathan Arthur. Bump PKGREVISION.
|
|
|
|
packages with the modular Xorg equivalent. Those are falling back
to the old location by default, so this commmit doesn't change
dependencies.
graphics/xpm ==> x11/libXpm
fonts/Xft2 ==> x11/libXft
x11/Xfixes ==> x11/libXfixes
x11/xcursor ==> x11/libXcursor
x11/Xrender ==> x11/libXrender
x11/Xrandr ==> libXrandr
|
|
|
|
- add ignore_stderr option to MDA_external destination. Thanks: Daniel
Burrows.
- documentation cleanups.
|
|
Too many changes to list here, see the HISTORY file for details.
|
|
- On Redhat Linux, a Postfix daemon could lock up while logging a
warning from a signal handler before exiting. This is remedied
by a low-cost re-entrancy guard for signal handlers that never
return.
- Message headers longer than 65535 broke the Milter protocol. To
make matters worse the cleanup server could then dereference a
null pointer. When Milter support is enabled, the length of each
message header is now limited to 60000.
- Several fixes to improve worst-case behavior of the (new) queue
manager with multi-recipient mail. The queue manager now reads
new recipients earlier from the queue file, instead of becoming
starved while waiting for the slowest in-memory recipients to
complete; and it now reads recipients in smaller chunks to avoid
spending too much time not talking to delivery agents.
- With remote SMTP server tarpit delays larger than the Postfix
SMTP client's smtp_rset_timeout (default: 20s), the client would
get out of sync with the server while reusing a connection. The
symptoms were "recipient rejected .. in reply to DATA".
- On FreeBSD 6.2, some Postfix daemon processes would complain once
with "Error 0" after "postfix reload" and then recover. This
warning is now logged only when the problem persists.
|
|
This version improves scanning of mail and tar files.
|
|
issues from mutt GIT repo. Bump PKGREVISION.
|
|
issues from mutt GIT repo. Bump PKGREVISION.
ok <tron>
|
|
is pgsql, close PR 34230.
|
|
|
|
|
|
* 2.3.0beta6 (development)
* The new printing function was implemented.
- Each page is now rendered by Cairo.
- The native print dialog is used.
- Page number is printed for each page.
- The option "Use external program for printing" was added.
- The printing of MIME part was implemented.
* Cc: was added to the header view.
* The option "Inherit recipients on reply to self messages" was added.
* Pilot-link (libpisock) 0.12 was supported.
* The window position and the layout of the 'Add Address' dialog was
modified.
* The default directory of the file selection dialog was changed
(in Win32, 'My Documents' is used. In Unix, the home directory is used).
* The UI is now updated periodically on manual filtering.
* The new mail notification on the tray icon is reset when any message
is read now.
* The encoding setting of the message view in new window is enabled also
on reply.
* Win32: The bug that the window was sometimes not displayed at the top
when the tray icon was clicked was fixed.
* Win32: The issue that the progress dialog was not updated while sending
large messages was fixed.
|
|
|
|
|
|
|
|
|
|
|
|
pkgsrc change:
* separate ja-patch into ja-patch and lite-patch.
ChangLog:
Version 1.4.9a - 3 December 2006
--------------------------------
- Security: Multiple IE cross site scripting issues related to the
widely acceptation of the word expression and url by IE.
- Security: Removing @import when sanitizing html mail.
Version 1.4.9 - 2 December 2006
-------------------------------
- Drop obsolete script plugins/make_archive.pl.
- Fixed Google translate form in translate plugin. Added new language
pairs.
- Added XMAGICTRASH extension tests in configtest utility. Removed code
that handled 'inbox.trash' as special folder in courier (#1354393).
- Allowed moving folders to trash in courier.
- Fix misspelled constant PREG_SPLIT_NI_EMPTY in sqimap_get_message
(#1543573).
- Provide View Unsafe Images link on viewing a text/html attachment.
- Fix variable typo in folders_create.php (#1545316).
- Added Courier IMAP OUTBOX check to configtest utility.
- If mailbox name starts with slash or contains ../, error message is
generated. Safety check for insecure default UW IMAP setup (#1557078).
- Ignore message copy errors when messages are deleted. Allows to delete
messages when quota is exceeded (#614887, #646386, #1446026).
- Fixed unintended literal fetching (#1562271).
- Added global file based address book listing controls. Added line
length configuration option for local_file address book backend
(#1181561). Added address book data integrity checks in local_file
address book backend. Fixed eregi and object notices in local_file
and database address book backends. Added additional address book
field support.
- Fixed variable corruption in configtest utility.
- Checked if configuration file is readable in configuration utility
(#1568355).
- Special mailboxes marked in special_mailbox hook are no longer listed
in folder delete, rename and subscription options.
- Translate plugin: prevent PHP notice when viewing empty message.
- Add CEST and MEST (non-standard) timezone codes for +0200.
- Add <label> to From field in message list.
- Add support for parsing SpamAssassin's X-Spam-Status header (#1589520).
- Fix in bodystructure parser code related to strings ending with an
escape character.
- Added "attachment */*" hook
- Added third parameter $logout_link to logout_error hook that allows
plugin control over login page URI displayed on login error page.
- Security: close cross site scripting vulnerability in draft, compose
and mailto functionality [CVE-2006-6142].
- Security: work around an issue in Internet Explorer that would guess
the mime type of a file based on contents, not Content-Type header.
|
|
Bump PKGREVISION.
|
|
ChangLog:
Version 1.4.9a - 3 December 2006
--------------------------------
- Security: Multiple IE cross site scripting issues related to the
widely acceptation of the word expression and url by IE.
- Security: Removing @import when sanitizing html mail.
Version 1.4.9 - 2 December 2006
-------------------------------
- Drop obsolete script plugins/make_archive.pl.
- Fixed Google translate form in translate plugin. Added new language
pairs.
- Added XMAGICTRASH extension tests in configtest utility. Removed code
that handled 'inbox.trash' as special folder in courier (#1354393).
- Allowed moving folders to trash in courier.
- Fix misspelled constant PREG_SPLIT_NI_EMPTY in sqimap_get_message
(#1543573).
- Provide View Unsafe Images link on viewing a text/html attachment.
- Fix variable typo in folders_create.php (#1545316).
- Added Courier IMAP OUTBOX check to configtest utility.
- If mailbox name starts with slash or contains ../, error message is
generated. Safety check for insecure default UW IMAP setup (#1557078).
- Ignore message copy errors when messages are deleted. Allows to delete
messages when quota is exceeded (#614887, #646386, #1446026).
- Fixed unintended literal fetching (#1562271).
- Added global file based address book listing controls. Added line
length configuration option for local_file address book backend
(#1181561). Added address book data integrity checks in local_file
address book backend. Fixed eregi and object notices in local_file
and database address book backends. Added additional address book
field support.
- Fixed variable corruption in configtest utility.
- Checked if configuration file is readable in configuration utility
(#1568355).
- Special mailboxes marked in special_mailbox hook are no longer listed
in folder delete, rename and subscription options.
- Translate plugin: prevent PHP notice when viewing empty message.
- Add CEST and MEST (non-standard) timezone codes for +0200.
- Add <label> to From field in message list.
- Add support for parsing SpamAssassin's X-Spam-Status header (#1589520).
- Fix in bodystructure parser code related to strings ending with an
escape character.
- Added "attachment */*" hook
- Added third parameter $logout_link to logout_error hook that allows
plugin control over login page URI displayed on login error page.
- Security: close cross site scripting vulnerability in draft, compose
and mailto functionality [CVE-2006-6142].
- Security: work around an issue in Internet Explorer that would guess
the mime type of a file based on contents, not Content-Type header.
|
|
and also remove inexistent tools.
Bump PKGREVISION.
|
|
|
|
|
|
variable) with the portable equivalent. Bump revision.
|
|
Found by Ond?ej T?ma (sorry for the missing chars) and analyzed by
Lasse Hillerøe Petersen.
|
|
changes:
-bugfixes
-translation updates
|
|
|
|
since release candidate 7.
|
|
* 2.2.10 (stable)
* The change between folders became faster at GTK+ 2.10.x.
* The text insertion by the action was fixed again.
* The text redraw problem on the undo of large text was fixed.
* The crash that occurred when printing a message with empty Subject,
From and To was fixed.
* The window position and the layout of the 'Add Address' dialog was
modified.
* Libpisock 0.12 was supported.
* Win32: The bug that window position was reset when quitting Sylpheed
while window was hidden was fixed.
* Win32: The selection of the labels on the header view and the alert
dialog are now visible.
* Win32: The e-mail menu in the start menu now works when Sylpheed is
selected as a default mailer.
* Win32: The character corruption on printing when environment-dependent
Japanese characters are used was fixed.
|
|
- Add options exim-appendfile-maildir exim-appendfile-mailstore
exim-appendfile-mbx exim-lookup-cdb exim-tcp-wrappers exim-tls
All but exim-lookup-cdb default to off, to preserve previous
defaults.
|
|
|
|
increase its BUILDLINK_ABI_DEPENDS, and bump PKGREVISIONs
of dependencies.
Sorry for not finding this earlier.
|
|
* Fixed an off-by-one buffer overflow in cache file handling. The
code is executed only with mmap_disable=yes and only if index files
are used (ie. INDEX=MEMORY is safe).
* passdb checkpassword: Handle vpopmail's non-standard exit codes.
- rc14 sometimes assert-crashed if .log.2 file existed in a mailbox
(earlier versions leaked memory and file descriptors)
- io_add() assert-crashfixes
- Potential SSL hang fix at the beginning of the connection
For details on the security issue, see:
http://www.dovecot.org/list/dovecot-news/2006-November/000023.html
|
|
* 1.4.3: [25 August 2006]
** Fixing 'unicode string filename' bug [Bug #1546546]. Regressive bug:
code to handle unicode strings added in v1.3.3 was lost in v1.4 during
code re-arranging/refactoring
|
|
|
|
Patch provided by ISIHARA Takanori in PR 34743.
HISTORY file:
Version 1.4, 2003/10/16
* Portugese language patch, apply with "patch < contrib/portugese.diff"
(Thanks Ronaldo Lazzari)
* Added msgid for clog (%i) (Thanks Ed Klavins)
* Fixed a bug in HTML formatted "Relay Pairs" section
(Thanks Wijnand Reimink for finding out the bug..)
* Feature patch from Andrew Caird.
"Downcase all addresses. This is so that foo@bar.com is equivilant to
FOO@BAR.Com and Foo@Bar.com and they all get counted the same in the
counts." New command line option '-A' (conf file: DowncaseAddresses).
* Fixed a bug with sendmail AUTH parsing (Thanks for Daniel Melanchthon)
(as a side effect, postfix logs seem to get parsed also.. :-)
* Do not cut lines in status/rejected sections of ascii report
(Suggested by Jeff Bronson)
|
|
More fixes.
"Duplicate header extension keywords" is the only known problem (or if I
forgot something, remind me). I'll try to figure out a way to reproduce
it easily and then get it fixed.
* LDAP: Don't try to use ldap_bind() with empty passwords, since
Windows 2003 AD skips password checking with them and just returns
success.
* verbose_ssl=yes: Don't bother logging "syscall failed: EOF"
messages. No-one cares about them.
+ Dovecot sources should now compile without any warnings with gcc 3.2+
- rc13 crashed if client disconnected while IDLEing
- LDAP: auth_bind=yes fixes
- %variables: Fixed zero padding handling and documented it. %0.1n
shouldn't enable it, and it really shouldn't stay for the next
%variable. -sign also shouldn't stay for the next variable.
- Don't leak opened .log.2 transaction logs.
- Fixed a potential hang in IDLE command (probably really rare).
- Fixed potential problems with client disconnecting while master was
handling the login.
- quota plugin didn't work in Mac OS X
|
|
* When new mails arrive, the tray icon is changed, and it will
be kept until a new mail is read.
* The option "Open inbox on startup" was added.
* The option "Remeber last selected message" was added.
* The crash when printing a message with empty subject was fixed.
* The bug that the text in the composition window was not redrawn
on the undo of large text was fixed.
* POP before SMTP was implemented.
|
|
|
|
|
|
|
|
|
|
|
|
configuration variables look exactly like the ones produced by the
configure scripts.
Added POSTFIX_QUEUE_DIR to BUILD_DEFS to make it visible why VARBASE can
be configured.
|
