Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
This release provides various bugfixes, optimisations and improvements
to the scanning engine. The new features include support for ARJ and
SFX-ARJ archives, AutoIt, basic SPF parser in clamav-milter (to reduce
phishing false-positives), faster scanning and others (see ChangeLog).
To get a consistent behaviour of the anti-phishing module on all platforms,
libclamav now includes the regex library from OpenBSD.
|
|
This package is DESTDIR ready.
libSieve 2.2.6
--------------
- Fix for bracketed comments (thanks to Daniel Shahaf).
- More graceful handling of malformed addresses (thanks to Paul Stevens).
- Return header and address errors separately from script parse errors.
|
|
changes:
-bugfixes
-translation updates
|
|
picky C compilers.
|
|
|
|
Bump PKG_REVISION.
|
|
(pkgsrc notice: we were using the original, known-to-be-good 1.4.12
distfile so all your servers should be fine)
Due to the package compromise of 1.4.11, and 1.4.12, we are forced to
release 1.4.13 to ensure no confusions. While initial review didn't
uncover a need for concern, several proof of concepts show that the
package alterations introduce a high risk security issue, allowing
remote inclusion of files. These changes would allow a remote user the
ability to execute exploit code on a victim machine, without any user
interaction on the victim's server. This could grant the attacker the
ability to deploy further code on the victim's server.
We *STRONGLY* advise all users of 1.4.11, and 1.4.12 upgrade
immediately.
|
|
any "dnsrbl" related option unless we want to enable it seems to do
the job.
|
|
While here, pkglint clean and add DESTDIR support.
This is strictly a maintenance release. No new functionality was added.
Changes since 2.2.8-rc1
none
Bugs fixed since 2.2.7
0000655: [Database layer] MIME headers are incorrectly parsed into cached tables (paul)
0000656: [Command-Line programs (dbmail-users, dbmail-util)] dbmail-export: bogus date in "From_" lines (paul)
|
|
+ Maildir: Don't wait on dovecot-uidlist.lock when we just want to
find out a new filename for the message.
- mbox: v1.0.8 changes sometimes caused FETCH to fail with
"got too little data", disconnecting the client.
- Fixed a memory leak when FETCHing message header/body multiple
times within a command (e.g. BODY[1] BODY[2])
- IMAP: Partial body fetching was still slow with mboxes
|
|
- USER_DESTDIR support added
- new maintainer for the package
- ok'ed by rillig
Changelog:
version 2.02: Fri Nov 30 09:57:48 CET 2007
Fixes:
- Mail::Internet uses Mail::Util::mailaddress, which is
not exported by default.
rt.cpan.org#31082 [Dave], rt.cpan.org#31070 [Friedrich Haubensak]
and [Slaven Rezic]
Improvements:
- use 3-arg open() in Mail::Util.
rt.cpan.org#20726 [Steve@sliug] and [Paul@city-fan]
version 2.01: Wed Nov 28 10:48:24 CET 2007
Changes:
- Remove work-around for Perl 5.8.0. unicode bug from
Mail::Address::_extract_name().
Result of rt.cpan.org#30661 [Josh Clark]
- Requires on Perl 5.8.1 minimum
Fixes:
- Mail::Mailer::testfile now also shows Cc destinations, the
setting of 'outfile' now works, and it will produce an error
when the data cannot be written. All thanks to [Slaven Rezic]
version 2.00_03: Tue Sep 25 12:27:28 CEST 2007
- folding of header fields sometimes ended prematurely.
Reported by [Anthony W. Kay]
- add $sender as 4th argument to Mail::Mailer::*::exec() where
missing. Discovered by [David Hand]
- add Date::Format and Date::Parse to Makefile.PL.
version 2.00_02: Sat Jul 21 12:29:20 CEST 2007
- parts of the documentation were lost, discovered by [Ricardo Signes]
- rt.cpan.org #28093 smtp timeout
check for local mail server can have short timeout.
Patch by [Alexandr Ciornii]
- rt.cpan.org #28411 syntax error in Mail::Mailer::smtp
reported by [Andreas Koenig]
version 2.00_01: Wed Jun 20 14:42:35 CEST 2007
- reorganized installation of MailTools, in a modern way. This
may break installation on very old releases of Perl.
- added t/pod.t
- restructured most code, no functional changes.
- added and cleaned a lot of documentation, using OODoc to
generate nice manuals in POD and HTML.
- extracted Mail::Field::Generic from Mail::Field
- added misteriously missing Mail::Field::AddrList::addr_list()
|
|
|
|
- This is still a development release so unfortunately no changelog
|
|
for mutt (non-devel).
|
|
|
|
NOTE: includes a critical bug fix in the attachment handling
- Enabled user selection of address format when adding from address
book during message composition.
- Fixed issue with adding attachments in PHP 4.x environments (#1805471).
- Backport size setting on "newmail" popup window.
- Added a "short_open_tag" configuration test.
- Undefined notice in error message box when no default folder prefix is set.
- Undefined index error when downloading. Possibly caused by using tabs and
opening multiple mailboxes.
- PAGE_NAME might not be defined in all plugins, which might cause a
"not defined" error on session timeouts.
- Fixed outgoing messages to allow addresses such as "0@..." or "000@...",
etc. (#1818398).
- Fixed issue with in-reply-to and reference headers not being retained on
reply (#1810659).
- Revived logout_error hook (#1800015).
- Allow custom session handlers to work correctly (and be defined at the
application level with SquirrelMail).
- Fix off-by-one in bodystructure parsing triggered by servers sending
a body location part (e.g. Sun Java System Messaging Server). Thanks
John Callahan (#1808382).
- Invalid initialization of To: header (#1772893).
- Includes cleanup in include/validate.php.
- Cleanup in multiple files to remove unneeded includes.
- Added sort by size (#812233 and #159997, plus multiple list requests).
Patch provided by Christopher E. Brown.
- Fix bug in sitewide SMTP settings still using authenticated user, rather
than configured settings (#1835942).
- Fixed mailto: functionality.
- Added mailto: link handling when viewing messages.
- Handle PHP's insistence on setting the value to 'deleted' for destroyed
sessions
|
|
Make smime_keys.pl work if .smime is in your home directory.
(mutt -Q reduces paths to ~, but smime_keys didn't expand that.)
Patch from Anon.
|
|
|
|
Release notes:
* Fix make clean target in dfasyn/ (Benj. Mako Hill)
* Limit number of messages that are examined when an end boundary is
missing in an mbox (Chung-chieh Shan)
* Avoid examining . and .. when traversing MH folder hierarchy (Steven Lumos)
* Fix various bugs in the name/value parser
* Add some RFC2231 support to the name/value parser (continuations)
* Fix indexing when existing database only contains 1 message
|
|
|
|
|
|
|
|
|
|
|
|
because it doesn't exist unless sasl is defined, causing building with
options dovecot-sasl and not sasl to fail.
|
|
++PKGREVISION
|
|
Add commented out LICENSE line (gnu-gpl-v3).
From ChangeLog:
Version 1.0.12:
- Gnulib update to 2007-11-27.
- Don't count already retrieved messages twice. This fixes a segfault when
only_new is off and header or size filtering is on. The bug was introduced in
the previous change; no released version is affected.
- If a filter decides to delete a mail, then additionally mark it as
retrieved. This prevents to filter the mail again in a later session when
the 'keep' option is set.
- Fix default UIDLS file on the W32 platform: Use '\' as directory separator,
not '/'. Reported by Ricky Thomas.
Version 1.0.11:
- Update the license of the source code to GPLv3 or later, and change the
license of the documentation to the GFDLv1.2 or later.
- Gnulib update to 2007-07-15.
- Add new option -Q / --half-quiet to print only status information but no
progress information. Suggested by Dimitrios Apostolou.
- Set the default timeout to 180 seconds = 3 minutes. This prevents sessions
from hanging forever. Suggested by Dimitrios Apostolou.
- Make the POP3 commands UIDL, LIST, and DELE abortable. This is useful for
mailboxes with many thousand mails.
- Update the UIDL state after mail retrieval, and save this state in case of
errors in DELE or QUIT. Only update the UIDL state again after successful
DELE and QUIT, and then save this state. This prevents an incorrect UIDL
state if the DELE commands are aborted, for example. Bug reported by
Dimitrios Apostolou.
Version 1.0.10:
- Fix UIDL handling: the first character of UIDs was ignored.
- Improve APOP timestamp checks. Thanks to Carlos Martín Nieto for a
discussion of this.
- Add documentation on how to find the right CA certificate for
tls_trust_file. Thanks to Bryan Kam for suggestions.
- Improve the documentation for TLS vs. SSL and STARTTLS vs. POP3-over-TLS.
Thanks to Carlos Martín Nieto for suggestions.
- Update the spanish translation (Carlos Martín Nieto).
Version 1.0.9:
- Require either tls_trust_file or tls_certcheck=off for TLS sessions, so that
mpop is not silently vulnerable to man-in-the-middle attacks.
- Gnulib update 2007-04-07.
- Protect against the man-in-the-middle attack on APOP authentication as
described in CVE-2007-1558. This is done by doing sanity checks on the
APOP timestamp in the server greeting.
However, this probably makes attacks only harder. It will not make them
impossible. Therefore, APOP authentication is never used automatically
anymore unless TLS is active.
- Do not use NTLM authentication automatically anymore unless TLS is active.
NTLM is not an open standard and must therefore be considered broken.
Version 1.0.8:
- Move build-aux files to separate directory build-aux.
- Gnulib update 2007-03-19.
- Improve and generalize workaround for pop.gmail.com RFC violations. This
enables automatic pipelining support for pop.gmail.com and some other
servers.
- Provide a hstrerror() function for systems that lack getaddrinfo() (so that
gethostbyname() must be used instead) and that do not provide hstrerror()
themselves. Needed for Solaris 2.6. Reported and tested by Chris Green.
|
|
|
|
|
|
|
|
changes:
-bugfixes
-translation updates
|
|
1.09 Thu May 08 22:10:00 2006
- Fixed change in logon sequence (Thank you to Eric Wong).
- Fixed change in contacts layout (Thank you to Eric Wong).
|
|
* VERSION 5.425 RELEASED
* (bugfix) A stub for MIME::Parser's tmp_recycling() method has been
re-added to preserve compatibility. Since recycling of tempfiles
never worked and has been removed, any code calling tmp_recycling()
should stop attempting to use the feature.
* VERSION 5.424 RELEASED
* (bugfix) [rt.cpan.org #29864] - lines in $entity->body() should be
newline-terminated.
|
|
+ Authentication: Added "password_noscheme" field that can be used
instead of "password". "password" treats "{prefix}" as a password
scheme while "password_noscheme" treats it as part of the password
itself. So "password_noscheme" should be used if you're storing
passwords as plaintext. Non-plaintext passwords never begin
with "{", so this isn't a problem with them.
- IMAP: Partial body fetching was sometimes non-optimal, causing
the entire message to be read for every FETCH command.
- deliver failed to save the message when envelope sender address
contained spaces.
- Maildir++ quota: We could have randomly recalculated quota when
it wasn't necessary.
- Login process could have crashed after logging in if client sent
data before "OK Logged in" reply was sent (i.e. before master had
replied that login succeeded).
- Don't assert-crash when reading dovecot.index.logs generated by
Dovecot v1.1.
- Authentication: Don't assert-crash if password beings with "{" but
doesn't contain "}".
- Authentication cache didn't work when using settings that changed
the username (e.g. auth_username_format).
|
|
SPECIAL_PERMS because ordering seems to be an issue
|
|
|
|
|
|
|
|
changes: many bugfixes
|
|
From the changelog, this seems to be many bugfixes and better RBL support.
|
|
|
|
actually need them at all. Add a "fam" option to cone which allows
it to be notified by the OS about changes to local Maildirs. Bump
the PKGREVISION to 1.
|
|
|
|
|
|
pkgsrc-users.
|
|
v1.1.4
------
[jan] Add Simplified Chinese translation (Anna Chen
<annachen2008@yahoo.com.cn>).
[cjh] Fix check for bulk or list precedence in Sieve vacation (Bug 5543).
[jan] Add additional checks to avoid adding empty test values (Bug 5392).
[jan] Fix multiline vacation messages with procmail driver (Bug 5273).
|
|
v2.1.5
------
[mjr] Fix some fatal errors caused by the IMSP driver when deleting certain
contacts and while adding contacts to lists in certain cases.
[mjr] Fix adding contacts to a new contact list in a source other than the
source the contacts being added are from.
[jan] Fix paging through search results from another than the default address
book (Bug 5137).
[cjh] Fix copy/moving contacts to a new contact list (Bug 5144).
|
|
v4.1.5
------
[cjh] Lower memory usage when downloading folders (Andrew Morgan
<morgan@orst.edu>).
[mms] Fix detection of default namespace information when no namespaces are
defined on the server (Bug 5538).
[mms] Don't lose message bodies when moving messages to trash when over quota
(Bug 5470).
[cjh] Remove unused defaults in Fetchmail_imap (Bug 2799).
[jan] Fix empty folder name appearing on Cyrus and servers with similar
namespaces (Bug 5138).
[jan] Only show reply options in iCalendar viewer if a reply is requested.
[cjh] Remove non-responsive www.keyserver.net and wwwkeys.pgp.net from
PGP options (Bug 5323).
[jan] Fix moving messages when over quota on Dovecot servers (Bug 5270).
[jan] Fix parsing of certain distribution lists (Bug 5134).
[mms] Fix rare occurrence where an action perfomed on the mailbox screen would
instead be performed on the INBOX (Bug 5202).
[mms] Don't show save attachments prompt in compose screen if configured to
automatically link all attachments (Request 5189).
|
|
security problems:
- MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows
- MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
|