if "ssl" is a package option.
* Stop the abuse of BUILD_TARGET and use MAKE_FLAGS instead. Also,
use OPSYSVARS to simplify the specification of the correct BUILD_TARGET
for each platform.
* Make use of the EXTRASPECIALS variable used by imap makefiles to pass
special MAKE_FLAGS settings through to all recursive make processes.
This gets rid of some MAKE_ENV statements.
* Split off the special alpha-codegen hack into a hacks.mk file.
* Do man page fixups at post-build time, not post-extract time. This
leaves the files pristine for possible patching.
* Add back the special handling if IMAP_UW_MAILSPOOLHOME is defined.
It was accidentally removed in patch-am when the whoson modifications
were added. Move the modifications to the configure phase instead
of post-patch so that the modifications aren't accidentally picked
up by mkpatches.
* Instead of listing each Makefile that needs the sed modification
s/c-client.a/libc-client.la/ and modifying them at post-extract
time, simply create patches for them.
* Instead of listing each header file to be installed, just derive
the list from the PLIST.
* Make the libtoolification a bit more transparent by patching libtool
references directly into the imap makefiles.
* Drop the -limapuw -> -lc-client buildlink transform that was only
needed for much older versions of the imap-uw package, and stop
installing libimapuw.*. All dependents of imap-uw already correctly
use -lc-client.
* Fix the handling of the kerberos package option so that we can use
the pkgsrc Kerberos 5 packages instead of only using the native
ones.
* Properly document the options.mk file.
Bump the PKGREVISION for the libimapuw.* changes and for the
IMAP_UW_MAILSPOOLHOME fixes. The rest of the changes are all
pkgsrc-related and don't really affect the binary package.
Main changes in TLS support:
- The Postfix SMTP client enforced mandatory TLS only when talking
to an ESMTP server; enforcement did not happen if Postfix could
somehow be forced to send HELO instead of EHLO. This problem also
exists in Postfix 2.2, where it is is fixed with Postfix 2.2
patch 11. This is minor compared to the DNS spoofing issues that
were fixed with Postfix 2.2.10.
- Workaround for an interoperability problem introduced with Postfix
2.3. Some buggy TLS client implementations were unable to deliver
mail because the Postfix SMTP server didn't send a TLS session
ID. To disable the workaround specify "smtpd_tls_always_issue_session_ids
= no"; this allows non-buggy TLS clients to save some space.
Main changes in Milter support:
- Safety measure. After "postsuper -r", mail is no longer inspected
by the Milters specified with the non_smtpd_milters parameter.
This measure prevents a bad interaction with external content
filters: Milters would receive incorrect SMTP client information,
and could be tricked into signing or allowing untrusted messages.
This change does not affect Milter applications that run behind
an after-queue content filter. The behavior is detailed in the
postsuper(1) manual page.
on NetBSD/powerpc reported by Makoto Fujiwara.
These patches are slightly aggressive adding most of proto type.
So, please report me if there is any problem.
No PKGREVISION bump since it should change nothing for binary package.
since they always need a C compiler, even when the source code is
completely in C++.
For some other packages, stated in the comment that a C compiler is
really not needed.
with another package. This makes it so this package can be installed
without X. This is for PR #26848.
Note: that some parts of metamail still reference "xterm".
Also changed path used in two scripts that reference the
now not-installed fonts. (Maybe that will need to be fixed too.)
Honor PKGMANDIR.
Update PKGREVISION.
Drop maintainership, I'm not using this any longer.
Changes made between 1.0.1 and 1.0.2 (2006/05/23).
A couple of optimizations specific to x86-64 have been applied to the
included MD5 routines.
Changes made between 1.0 and 1.0.1 (2006/03/07).
Use sysconf(_SC_CLK_TCK) instead of CLK_TCK when _SC_CLK_TCK is known to
be available or CLK_TCK is not. This is needed for portability to glibc
2.3.90+ and possibly to other recent and future systems.
Use socklen_t where appropriate.
Pkgsrc changes:
- Removed p5-Crypt-RSA and p5-Crypt-OpenSSL-Bignum as direct requirements.
- Added patterns to CHECK_INTERPRETER_SKIP to avoid messages about missing
/usr/bin/perl.
Relevant changes since version 0.17:
====================================
* no longer depends on Crypt::RSA or Crypt::OpenSSL::Bignum.
Changelog :
The keys used are:
!: modified feature, -: deleted feature, +: new feature
1.5.12 (2006-07-14):
- $imap_cachedir replaced with $message_cachedir
+ Header/body caching for POP ($message_cachedir)
+ Header caching for MH folders
! $record now defaults to ~/sent
! $imap_idle now defaults to "yes" instead of "no"
+ Tab-completion for $my_* variable names and values
+ Expansion of mutt variables (except shell escape)
+ Self-defined variables with $my_* prefix
+ Pattern group support
+ $imap_cachedir
+ 'old' flag on IMAP folders
+ SASL-IR support for IMAP
+ IMAP IDLE support and $imap_idle
+ Pipeline-based IMAP communicaton
+ Full large file support
+ Attachment counting: attachments and unattachments commands,
%Q and %X for $attach_format, %X for $index_format
+ Basque translation
+ QDBM backend for header caching
+ Irish translation
Pkgsrc changes:
- Added CHECK_INTERPRETER_SKIP to disable checks of some *.pm files.
Relevant changes since version 2.77:
====================================
2.82 (May 26, 2006)
· Always disconnect from discovery server after performing discovery.
This fixes a long standing bug wherein razor-report and razor-check
would attempt to report to or check against the discovery servers.
2.81 (Mar 16, 2006)
· Update service policy.
2.80 (Feb 27, 2006)
· Untaint filenames loaded from the config file. [Bug #1395719]
2.78 (Oct 01, 2005)
· When registering with a username and password, accept existing cre-
dentials if they authenticate successfully.
· When autoregistering, attempt to write a test identity before
attempting to register credentials.
· Always remove the existing identity symlink before overwriting, as
-e $fn can return false for a symlink that still exists.
· Ensure that checks and reports are sent to the appropriate servers.
[Bug #1267559]
Major changes compared to the IMP H3 (4.1.1) version are:
* Allow to toggle off the Virtual Inbox.
* Display quota for current folder on Cyrus servers.
* Updated German, Italian and Spanish translations.
* Several small bugfixes and improvements.
The full list of changes (from version H3 (4.1.1)) can be viewed here:
http://cvs.horde.org/diff.php/imp/docs/CHANGES?r1=1.699.2.184&r2=1.699.2.194&ty=h
This is the first version in the 2.3.x series, please see the release notes
for full list of changes since 2.2.x before upgrading your current
installation.
- Fixed URL for Read Receipts being incorrect in some cases (#1177518).
- Fixed endless loop when trying to parse "From: )(" (#1517867).
- Using is_file() instead of file_exists() in fortune plugin (#1499134).
- Add manual page for conf.pl under contrib.
- Don't allow selecting INBOX as Sent, Draft or Trash folder (#1242346).
and add a new helper target and script, "show-buildlink3", that outputs
a listing of the buildlink3.mk files included as well as the depth at
which they are included.
For example, "make show-buildlink3" in fonts/Xft2 displays:
zlib
fontconfig
iconv
zlib
freetype2
expat
freetype2
Xrender
renderproto
fixes by patch.)
While here, fix PR pkg/33821 by substituting pkgsrc's BINOWN, BINGRP, and
INSTALL definitions into the installed share/sendmail/cf/Makefile.
8.13.7/8.13.7 2006/06/14
A malformed MIME structure with many parts can cause sendmail to
crash while trying to send a mail due to a stack overflow,
e.g., if the stack size is limited (ulimit -s). This
happens because the recursion of the function mime8to7()
was not restricted. The function is called for MIME 8 to
7 bit conversion and also to enforce MaxMimeHeaderLength.
To work around this problem, recursive calls are limited to
a depth of MAXMIMENESTING (20); message content after this
limit is treated as opaque and is not checked further.
Problem noted by Frank Sheiness.
The changes to the I/O layer in 8.13.6 caused a regression for
SASL mechanisms that use the security layer, e.g.,
DIGEST-MD5. Problem noted by Robert Stampfli.
If a timeout occurs while reading a message (during the DATA phase)
a df file might have been left behind in the queue.
This was another side effect of the changes to the I/O
layer made in 8.13.6.
Several minor problems have been fixed that were found by a
Coverity scan of sendmail 8 as part of the NetBSD
distribution. See http://scan.coverity.com/
Note: the scan generated also a lot of "false positives",
e.g., "error" reports about situations that cannot happen.
Most of those code places are marked with lint(1) comments
like NOTREACHED, but Coverity does not understand those.
Hence an explicit assertion has been added in some cases
to avoid those false positives.
If the start of the sendmail daemon fails due to a configuration
error then in some cases shared memory segments or pid
files were not removed.
If DSN support is disabled via access_db, then related ESMTP
parameters for MAIL and RCPT should be rejected. Problem
reported by Akihiro Sagawa.
Enabling zlib compression in OpenSSL 0.9.8[ab] breaks the padding
bug work-around. Hence if sendmail is linked against
either of these versions and compression is available,
the padding bug work-around is turned off. Based on
patch from Victor Duchovni of Morgan Stanley.
CONFIG: FEATURE(`dnsbl') and FEATURE(`enhdnsbl') used
blackholes.mail-abuse.org as default domain for lookups,
however, that list is no longer available. To avoid
further problems, no default value is available anymore,
but an argument must be specified.
Portability:
Fix compilation on OSF/1 for sfsasl.c. Patch from
Pieter Bowman of the University of Utah.
set OVERRIDE_DIRDEPTH to find any libtool scripts deeper in the WRKSRC
tree unless they're named something other than "libtool".
SHLIBTOOL_OVERRIDE generally doesn't need to be specified either -- just
define it to the empty list and shlibtool-override will look for libtool
scripts.
* disable_plaintext_auth=yes: Removed hardcoded 127.* and ::1 IP
checks. Now we just assume that the connection is secure if the
local IP matches the remote IP address.
* SSL code rewrite which hopefully makes it work better than before.
Seems to work correctly, but if you suddently have trouble with SSL
connections this is likely the reason.
+ verbose_ssl=yes: Log also SSL alerts and BIO errors
- If namespace's location field wasn't set, the default location
was supposed to be used but it wasn't.
- When copying ssl-parameters.dat file from /var/lib to /var/run its
permissions went wrong if it couldn't be copied with hard linking.
- Fixed filesystem quota plugin to work with BSDs.
- Maildir: Saving mails didn't work if quota plugin was enabled (again)
- Maildir: Messages' received time wasn't saved properly when
saving/copying multiple messages at a time. Also if using quota
plugin the S= size was only set for the first saved file, and even
that was wrong.
- passdb passwd-file: Don't require valid uid/gid fields if file
isn't also being used as a userdb.
- PostgreSQL: Handle failures better so that there won't be
"invalid fd" errors in logs.
- Don't try to expunge messages if the mailbox is read-only. It'll
just cause our index files to go out of sync with the real
mailbox and cause errors.
- ANONYMOUS authentication mechanism couldn't work because
anonymous_username setting wasn't passed from master process.
* PAM: If user's password is expired, give "Password expired" error
message to the user. Now actually working thanks to Vaidas Pilkauskas
* Relicensed dovecot-auth, lib-sql and lib-ntlm to MIT license. See
COPYING file for more information.
* Abuse prevention: When creating a mailbox, limit the number of
hierarchies (up to 20) and the length of the mailbox name within
a hierarchy (up to 200 characters).
* mbox: If saved mail doesn't end with LF, add it ourself so that the
mails always have one empty line before the next From-line.
+ Added --with-statedir configure option which defaults to
$localstatedir/lib/dovecot. ssl-parameters.dat is permanently
stored in that directory and is copied to login_dirs from there.
+ IMAP: Support SASL-IR extension (SASL initial response)
+ Support initial SASL response with LOGIN mechanism. Patch by Anders
Karlsson
+ Added PLAIN-MD4 password scheme. Patch by Andrey Panin.
+ Added support for XFS disk quotas. Patch by Pawel Jarosz
+ If another process deletes the opened mailbox, try to handle it
without writing errors to log file. Handles the most common cases.
+ Added TLS support for LDAP if the library supports it.
- SEARCH command was more or less broken with OR and NOT conditions
- Dovecot corrupted mbox files which had CR+LF linefeeds in headers
- MySQL code could have crashed while escaping strings
- MD4 code with NTLM authentication was broken with 64bit systems.
Patch by Andrey Panin
- Plugin loading was broken in some OSes (eg. FreeBSD)
- Several fixes to handling empty values in configuration file
- Several fixes to dictionary quota backend and dict server.
Also changed how they're configured.
- deliver: Fixed plugin handling settings
- mbox_min_index_size handling was somewhat broken
- passdb passwd-file: extra_args field wasn't read unless the file
was also used as userdb.
- fix regression introduced in 4.6.0 where atime on mbox files would
get updated (i.e. not set back), making it difficult for other
programs to tell if there was new mail or not without actually
opening the mbox. Thanks: Tim van der Molen.
- fix regression: spurious errors thrown when required multidrop
retriever parameter "envelope_recipient" not present in getmailrc
file. Thanks: Elliot Schlegelmilch.
- fix regression: getmail_fetch no longer properly supported external
MDAs because of problems parsing the arguments to them. Thanks: ?.
- change getmail's handling of regular expressions in the "locals"
parameter of MultiSorter destination to allow it to handle
backslashes correctly. Unfortunately this means complicating
the configuration syntax slightly. Thanks: Tim van der Molen.
- update filters to use new configuration code. Remove obsolete code.
- Fixed the SMTP protocol module to send QUIT on protocol failures.
- Added support for the SMTP AUTH LOGIN method. Thanks to Sean
MacLennan for the suggestion.
- Fixed the SMTP protocol module to send EHLO instead of HELO when doing
authentication. Thanks to Norbert Tretkowski for pointing this out.
- Fixed compile breakage on Solaris due to use of setenv.
- Fixed netstring length bug in QMQP sending module.
- If the sender name cannot be determined from the environment
variables, try to pull it from /etc/passwd before using "unknown".
Thanks Roderick Schertler.
- Total rewrite of email code that should fix encoding problems
- Added configurable timeout for nonresponsive feeds
- Fixed incorrectly using text summary_detail instead of html content
- Fixed bug with deleting feed 0 if no default email was set
- Print name of feed that is being deleted
- Finally added oft-requested support for enclosures. Any enclosures,
such as a podcast MP3, will be listed under the entry URL
- Made feed timeout compatible with Python versions 2.2 and higher,
instead of v2.4 only
- Added optional, configurable CSS styling to HTML mail. Set
USE_CSS_STYLING=1 in your config.py to enable this. If you want
to tweak the look, modify STYLE_SHEET.
- Improved empty feed checking
- Improved invalid feed messages
- Unfortunately, rss2email is no longer compatible with Python v2.1.
Two of the most serious lingering issues with rss2email were
waiting forever for non-responsive feeds and its inablility to
properly handle feeds with international characters. To properly
fix these once and for all, rss2email now depends on functionality
that was not available until Python v2.2. Hopefully this does
not unduly inconvenience anyone that has not yet upgraded to a
more current version of Python.
$smtp_sasl_security_options (as documented in postconf(5)) instead of
$var_smtp_sasl_opts, which is never defined. This is a bug that exists
in the Postfix-2.2.x series but has been fixed in the (current)
Postfix-2.3.x series. This fixes PR pkg/29631 by Christoph Badura.
Bump the PKGREVISION to 1.
It seg faults (with some double free() it looks like) when DNS
is not working. So after the freeze I will explore this more.
I also see a new version is available -- maybe it fixes it...
(1) they are more likely to do the right thing if the user sets
rc_fast_and_loose; and
(2) they pre-create any necessary directories prior to start the
respective services.
Also, fix the path to the courierwebadmin binary in SPECIAL_PERMS for the
courier-mta package.
Bump the PKGREVISION.
the pkglint warning:
As {INSTALL,DEINSTALL}_TEMPLATE is modified using "+=", its name
should indicate plural.
This does make the variables a bit more suggestive of the fact that they
hold lists of values.
This avoids the need for a confusing line of the form:
DEINSTALL_TEMPLATE+= path/to/INSTALL
in the package Makefile, and actually removes the need to specify it
altogether since by convention, the existence of the DEINSTALL script
is enough to add it to DEINSTALL_TEMPLATE.
C++ and Fortran by default, but doing so does not bomb configure or build,
so there's no harm in the pkgsrc warnings.)
Because this changes the dependencies on systems using pkgsrc-supplied gcc,
bump PKGREVISION. <sigh>
mail related after all. The logging message also contains confidential
information like sender, recipient and subject which shouldn't go to
a public readable logfile. Bump package revision because of this fix.
mail related after all. The logging message also contains confidential
information like sender, recipient and subject which shouldn't go to
a public readable logfile. Bump package revision because of this fix.
A malformed MIME structure with many parts can cause sendmail to
crash while trying to send a mail due to a stack overflow,
e.g., if the stack size is limited (ulimit -s). This
happens because the recursion of the function mime8to7()
was not restricted. The function is called for MIME 8 to
7 bit conversion and also to enforce MaxMimeHeaderLength.
To work around this problem, recursive calls are limited to
a depth of MAXMIMENESTING (20); message content after this
limit is treated as opaque and is not checked further.
SSL libraries to build couriertls, which encapsulates the logic for
handling SSL connections for Courier services. Drop the dependency
on openssl from both courier-imap and courier-mta, which only need
the "openssl" tool instead. Bump the PKGREVISIONs for all three
packages due to the changed dependencies. Problem noted by Ondrej
Tuma in private email.
Fixes a lot of bugs. The next release will be the first "release
candidate" instead of a beta.
* PAM: Don't call pam_setcred() unless setcred=yes PAM passdb
argument was given.
* Moved around settings in dovecot-example.conf to be in more logical
groups.
+ Local delivery agent (deliver binary) works again.
+ LDAP: Added support for SASL binding. Patch by Geert Jansen
+ ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log
invalid sent certificates. If verbose_ssl=yes, log even the valid
certificates. When using the username from the certificate, use
CommonName. Based on patch by HenkJan Wolthuis
+ PAM: Set PAM_TTY which is needed by some PAM plugins
+ dovecot --exec-mail ext <binary path> can now be used to start
binaries which want dovecot.conf to be read, for example the
convert-tool.
- Expunging needed to be done twice if client used STORE +FLAGS.SILENT
command to set the \Deleted flags
- Added sql_escape_string() to lib-sql API and use it instead of
normal \-escaping.
- ACL plugin fixes
- DIGEST-MD5: Trying to use subsequent authentication crashed
dovecot-auth.
- Fetching BODY when BODYSTRUCTURE was already cached caused the
reply to be broken in some cases
- Lots of fixes for index file handling
- dbox fixes and changes
- mbox syncing broke if some extraneous/broken headers were removed
(eg. extra X-IMAPbase headers in mails)
- Running Dovecot from inetd work now properly with POP3
- Quota plugin fixes for calculating the quota correctly
Changelog:
Evolution-Data-Server 1.6.2, 2006-05-29
----------------------------------------
Bug fixes since 1.6.2 :
http://go-evolution.org/Evo2.6.2#Evolution-Data-Server
And on that page:
From Evolution
(There is currently no text in this page)
Changes 2.2.6:
* The 8-bit literal (literal8) in IMAP4 response was supported.
* The missing timeout handling was added for SMTP.
* The failure of URI security check when they have leading space
was fixed.
Changes 2.2.5:
* The character corruption and crash bug when using Japanese
half-width kana on sending messages was fixed.
* The execution failure when using the accessibility module was fixed.
* The bug that new/unread count becoming negative value was fixed.
* The bug that bold face was disabled in the folder selection dialog
with GLib 2.10 and Pango 1.12 was fixed.
* The incorrect progressbar display when expired messages exist was
fixed.
* [SECURITY] Fix bug in encoding of usernames that contain '='. This
fixes the security advisories noted here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2659http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=368834http://secunia.com/advisories/20519/
* Implemented "Purge" option for mail filters.
* Invoke Courier filters in alphabetical order, and uses 050 exit code
to accept a message without running the remaining filters, which gets
converted to a 250 ESMTP code.
* Fix improper parsing of ident/pfix tokens in SPF.
* New command line tool "aliaslookup" to look up mail aliases.
* Added support for the koi8-u character set.
* Fix monthly rotation of sent folder on multilingual systems.
* Miscellaneous small i18n fixes.
* New "any message" webmail filter option.
* Improve the "message limit exceeded" error message.
* New checkbox on the login form enables/disables soft timeout.
* Create an invisible frame at login time that reloads at
timeoutsoft/2 intervals, thus keeping the session alive
* Fix bug where overriding TIMEOUTSOFT via environment variables may
cause calendar session to timeout prematurely
Pkgsrc changes:
- The module is now available on CPAN, so changed MASTER_SITES accordingly.
- Changed HOMEPAGE to CPAN site because Jason Long's web site seems to
be down occasionally.
- Added Crypt::OpenSSL::Bignum as a requirement (listed in Makefile.PL)
because Mail::DKIM uses objects of that type (returned by
Crypt::OpenSSL::RSA::get_key_parameters).
- New requirement: security/p5-Digest-SHA
Relevant changes since version 0.14:
====================================
* implemented signing and verifying of a SHA-256 digest
* various new tests and a few bug fixes
Use a better boundary check, which doesn't depend on PATH_MAX >> NAME_MAX.
Both changes are from DragonFly and have been reported upstream.
Install only man pages, not the catpages. The installation was
inconsistent before.
Bump revision. OK from tv@.
Pkgsrc changes:
- patch-bb for no longer necessary (integrated upstream).
Changes since version 3.1.2:
============================
- bug 4926: given a certain set of parameters to spamd and a specially
formatted input message, users could cause spamd to execute arbitrary
commands as the spamd user
- bug 4932: the userstate dir and userprefs file would not be created
under certain conditions.
3.6.7 is a maintenance release
BUGFIX: Using UIDInSignature, wrong UID is written to message when using groups
BUGFIX: PostgreSQL driver does not reconnect on failure in daemon mode
BUGFIX: X-DSPAM-Probability sometimes misreported when multiple algorithms used
BUGFIX: Agent segfaults when DeliveryHost or ClientHost not specified, --client
BUGFIX: Agent segfaults on some systems when syslog is used
BUGFIX: Agent segfaults when dlopen() to storage library fails
BUGFIX: Infinite loop created when deleting preference, not using extensions
BUGFIX: ATX (agent context) does not hold enough bits for 'flags' variable
3.6.6 is a maintenance release
MAINT: Phased out deprecated Berkeley DB drivers
MAINT: Phased out legacy tools (dspam_corpus, dspam_genaliases)
BUGFIX: When using logfile, write errors result in segfault
BUGFIX: Compiler warnings with sqlite_drv and sqlite3_drv
BUGFIX: MySQLUIDInSignature causes segfault on retrain
BUGFIX: trainPristine preference "off" does not override default
mail/thunderbird-gtk1 to 1.5.0.4, and www/seamonkey, www/seamonkey-gtk1
and www/seamonkey-bin to 1.0.2 (salo has already updated www/firefox-bin).
Note that thunderbird skipped one release number (again) to stay on par
with firefox.
These updates provide:
* improvements to product stability,
* several important security fixes (see below).
Fixed in Firefox 1.5.0.4:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Fixed in Thunderbird 1.5.0.4:
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-40 Double-free on malformed VCard
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Fixed in SeaMonkey 1.0.2:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-40 Double-free on malformed VCard
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
all PEAR packages to php?-pear-* and all Apache packages to ap13-* or
ap2-* respectively. Add new variables to simplify the Makefile
handling. Add CONFLICTS on the old names. Reset revisions of bumped
packages. ap-php will now depend on the default Apache and PHP version.
All programs using it have an implicit option of the Apache version
as well.
OK from jlam@ and adrianp@.
- fix attribute deletion error with Filter_classifier when
strip_delivered_to is set. Thanks: ?.
- do not consider qmail-local writing to stderr a delivery error.
Thanks: ?.
Remove nearly 2-year-old MESSAGE about upgrading from version 3.
Version 1.2.1 - 9 March 2006
----------------------------
- Buf fix; program fault when using the fetch*() family of functions.
Version 1.2 - 2 March 2006
--------------------------
- IPv6 support.
- Lua 5.1 compatibility.
- Bug fix; handle messages containing binary data.
- Bug fix; problems with CPU utilisation when the inactivity timeout timer was
set.
Pkgsrc changes:
- The updates for rule files go into $VARBASE/spamassassin/.
- This above directory and the directory sa-update-keys for the GPG keys
are now handled automatically by OWN_DIRS.
- The growing number of *.pre files are managed in a loop in the Makefile.
They are no longer contained in the static PLIST.
- Removed some unnecessary trailing slashes.
- Patching init.pre in order to disable the SPF plugin broke the spf.t
test. This is now fixed, although in a rather ugly way :-/.
- patch-ab no longer needs to use BSD_INSTALL_DATA_DIR because we create
the directories through INSTALLATION_DIRS.
- patch-ad and patch-az were removed (changes integrated upstream).
- patch-bb fixes a small documentation error.
- Fixed some warnings by pkglint about the SUBST framework in Makefile
and options.mk.
Relevant changes since version 3.1.1:
=====================================
- bug 4802: implement DKIM plugin, including whitelist_from_dkim support
- bug 3838: work around Perl bug causing captured RE variables to become
tainted -- thanks to Mark Martinec for pointing out the bug with
Perl itself
- bug 4850: re-enable the Razor2 plugin by default due to a service
policy change
- bug 4826: Razor2 plugin needs to load Mail::SpamAssassin::Timeout module
- bug 4827: M::SA::first_existing_path() would return the last array
entry passed in if none of the paths were found. Now return undef
instead and handle the error when it happens.
- bug 4813: generally open RE causes sendmail received header get read
in as qmail in error
- bug 4839: Logger.pm converts control chars including tab into
underscores which confuses a bunch of users when checking debug output.
Convert tab into space instead, etc.
- bug 4884: if a null message is passed in, there are several variables
which end up undefined causing warnings. fake an empty message if no
input is given.
- bug 4793: when replacing tags in a message (_TAG_), leave the tags
that don't exist alone instead of just removing them
- bug 4861, 4760: handle dccifd and dccproc failover properly, backport
relays_internal and relays_external code, backport bug 4760 fix so
that it's not possible to be in internal_networks without being in
trusted_networks as well
- bug 4901: deal more properly with failures in bgsend(). also, use
the proper variable to show when errors occur.
- bug 4867: fetchmail changed header formats at some point making Received
parsing fail in certain conditions
- bug 4699: use M::SA::Timeout for spamd copy_config call and allow for
empty $@ values
- bug 3754: if there's a problem opening a file via sa-learn or
spamassassin, return an error exit value.
non-tabs; else make(1) interprets it as a command line.
Fixes the following message on NetBSD 2.1:
make: "/export/SRC/netbsd/pkgsrc/mail/mailman/Makefile" line 31: Unassociated shell command "# use 'postfix' for postfix"
and add a commend what to change for postfix.
Before, this used group 'guest', which didn't work with any mailer,
so that's not perfect, but a step in the right direction.
2006-03-17 David F. Skoll
* VERSION 5.420 RELEASED
* Fix regression introduced in 5.419 -- quoted-printable
encoding would sometimes fail on "textual" MIME parts.
> 8.13.6/8.13.6 2006/03/22
> SECURITY: Replace unsafe use of setjmp(3)/longjmp(3) in the server
> and client side of sendmail with timeouts in the libsm I/O
> layer and fix problems in that code. Also fix handling of
> a buffer in sm_syslog() which could have been used as an
> attack vector to exploit the unsafe handling of
> setjmp(3)/longjmp(3) in combination with signals.
> Problem detected by Mark Dowd of ISS X-Force.
> Handle theoretical integer overflows that could triggered if
> the server accepted headers larger than the maximum
> (signed) integer value. This is prevented in the default
> configuration by restricting the size of a header, and on
> most machines memory allocations would fail before reaching
> those values. Problems found by Phil Brass of ISS.
> If a server returns 421 for an RSET command when trying to start
> another transaction in a session while sending mail, do
> not trigger an internal consistency check. Problem found
> by Allan E Johannesen of Worcester Polytechnic Institute.
> If a server returns a 5xy error code (other than 501) in response
> to a STARTTLS command despite the fact that it advertised
> STARTTLS and that the code is not valid according to RFC
> 2487 treat it nevertheless as a permanent failure instead
> of a protocol error (which has been changed to a
> temporary error in 8.13.5). Problem reported by Jeff
> A. Earickson of Colby College.
> Clear SMTP state after a HELO/EHLO command. Patch from John
> Myers of Proofpoint.
> Observe MinQueueAge option when gathering entries from the queue
> for sorting etc instead of waiting until the entries are
> processed. Patch from Brian Fundakowski Feldman.
> Set up TLS session cache to properly handle clients that try to
> resume a stored TLS session.
> Properly count the number of (direct) child processes such that
> a configured value (MaxDaemonChildren) is not exceeded.
> Based on patch from Attila Bruncsak.
> LIBMILTER: Remove superfluous backslash in macro definition
> (libmilter.h). Based on patch from Mike Kupfer of
> Sun Microsystems.
> LIBMILTER: Don't try to set SO_REUSEADDR on UNIX domain sockets.
> This generates an error message from libmilter on
> Solaris, though other systems appear to just discard the
> request silently.
> LIBMILTER: Deal with sigwait(2) implementations that return
> -1 and set errno instead of returning an error code
> directly. Patch from Chris Adams of HiWAAY Informations
> Services.
> Portability:
> Fix compilation checks for closefrom(3) and statvfs(2)
> in NetBSD. Problem noted by S. Moonesamy, patch from
> Andrew Brown.
> Major changes compared to the Turba H3 (2.1) version are:
> * Fixed losing sessions when editing address books.
> * Added upgrade script for Oracle to upgrade from 1.2 to 2.x.
> * Fixes and improvements to the create_default_histories.php and
> public_to_horde_share.php scripts.
> * Updated Danish, Dutch, German, Greek, Estonian and Japanese translations.
> * Small bugfixes and improvements.
>
> The full list of changes (from version H3 (2.1)) can be viewed here:
>
> http://cvs.horde.org/diff.php/turba/docs/CHANGES?r1=1.181.2.68&r2=1.181.2.80&ty=h
>
> Major changes compared to the Ingo H3 (1.1) version are:
> * Restored backward compatibility with Horde 3.0.x.
> * Enabled the filter setting to stop further filtering by default.
> * Small bug fixes and improvements.
> * New translations: Estonian, Greek.
> * Updated translations: Danish, Dutch, German.
>
> The full list of changes (from version H3 (1.1)) can be viewed here:
>
> http://cvs.horde.org/diff.php/ingo/docs/CHANGES?r1=1.55.2.39&r2=1.55.2.49&ty=h
changes since 1.0beta7:
* Fixed a security hole with mbox: "1 LIST .. *" command could
list all directories and files under the mbox root directory, so
if your mails were stored in eg. /var/mail/%u/ directory, the
command would list everything under /var/mail.
+ Unless nfs_check=no or mmap_disable=yes, check for the first login
if the user's index directory exists in NFS mount. If so, refuse to
run. This is done only on first login to avoid constant extra
overhead.
+ If we have plugins set and imap_capability unset, figure out the
IMAP capabilities automatically by running imap binary at startup.
The generated capability list isn't updated until Dovecot is
restarted completely, so if you add or remove IMAP plugins you
should restart. If you have problems related to this, set
imap_capabilities setting manually to work around it.
+ Added auth_username_format setting
- pop3_lock_session setting wasn't really working
- Lots of fixes related to quota handling. It's still not working
perfectly though.
- Lots of index handling fixes, especially with mmap_disable=yes
- Maildir: saving mails could have sometimes caused "Append with UID
n, but next_uid = m" errors
- flock() locking never timeouted because ignoring SIGALRM caused the
system call just to be restarted when SIGALRM occurred (probably not
with all OSes though?)
- kqueue: Fixed "Unrecognized event". Patch by Vaclav Haisman
general idea is that the client should never know that it's not talking to
the real IMAP server. The only thing that makes this a slightly unique Imap
Proxy server is that it caches server connections.
RELEASE 3.6.5-STABLE
MAINT: PgSQL SQL tuning
MAINT: WebUI aesthetic and functional fixes
MAINT: Added --disable-syslog and --with-logfile= configuration flags
MAINT: Added -t flag for dspam_stats to total stats
MAINT: Markov result used as X-DSPAM-Confidence when Markov used
MAINT: Support for separate read/write servers to be used with mysql_drv
BUGFIX: Spam are quarantined when --deliver=summary
BUGFIX: Admin graphs malformatted when subject contains newline character
BUGFIX: WebUI does not use MAX_COL_LEN
BUGFIX: Output for dspam_admin aggr pref incorrect
BUGFIX: Flat-file preference writes fail on some systems
BUGFIX: Failure to connect to ClamAV causes segmentation fault
BUGFIX: NULL username in system causes segmentation fault
BUGFIX: ClamAV processing and cleanup issues
BUGFIX: Fragment files overwritten on retrain
BUGFIX: Miscellaneous invalid read / segmentation fault bugs
BUGFIX: If TrainingMode not specified in dspam.conf or passed in, segmentation fault
BUGFIX: No output returned when using --deliver=summary with dspamc
RELEASE 3.6.4-STABLE
DOC: Documented user preferences in README
MAINT: Added dspam_train tool, replacing most functions of dspam_corpus
MAINT: Code cleanup and performance improvements
MAINT: Significant improvements in accuracy, specifically reduced false pos.
MAINT: Removed experimental neural collaboration functions
MAINT: Added ClassAlias configuration directive to dspam.conf
MAINT: Added undo option for retraining via WebUI
MAINT: Added storeFragments support to WebUI
MAINT: Added mass-retraining support to WebUI
BUGFIX: DSPAM segfaults when invalid UID specified using UIDInSignature
BUGFIX: No output when using --classify with --client
BUGFIX: dspam_corpus overrides default dspam.conf settings
BUGFIX: Multi-driver builds fail when preferences-extension is not supported
Prior to this release, there are security vulnerability the same as
squirrelmail 1.4.5.
This update made with temporary Japanese patch based on the patch
for 1.4.5.
symmetry between installation from source and from binary package.
Annoate MESSAGE accordingly, so that those using apop can do it
themselves. Bump revision
be created just before its "configure" phase, obviating the need
for the hackish dependency on a qmail-users package. Since the new
functionality in bsd.pkginstall.mk also records and enforces numeric
UIDs and GIDs in binary packages, remove the note on that matter
from MESSAGE.
Bump PKGREVISION.
+ Add an INSTALL script that detects the presence of the old
sqwebmail state directory and that informs the admin to move it
to the new location.
+ Install some more of the HTML documentation in the location expected
by courier-mta.
* Complete re-implementation of the LDAP addressbook.
* Increase the maximum size of the CGI environment to avoid certain
classes of browser/website problems.
+ Install some more of the HTML documentation in the location expected
by courier-mta.
+ Moved the default locations for the imapd and pop3d SSL certificates
into ${PKG_SYSCONFDIR}. These paths may be changed directly in the
imapd-ssl and pop3d-ssl configuration files by modifying TLS_CERTFILE.
* New capability to control announcements of IMAP ACL support when
starting imapd.
* Optimization: Skip going through the motions of outputting the results
of a SORT if the number of sorted messages is 0.
* Have CREATE and RENAME also create courierimapuidlist.
* Log total bytes sent/received in IMAP and POP3 sessions.
+ Install the makedat documentation; even though "makedat" is part
of courier-authlib, that package installs no doucmentation for
it, and "makedat" is used quite frequently in conjunction with
maildrop.
* fix for RFC822 compliance -- encode spaces that precede a newline.
courier-0.53.1 as mail/courier-mta.
The Courier mail transfer agent (MTA) is a modular multiprotocol mail
server that's designed to strike a balance between reasonable performance,
flexibility and features.
This package differs from traditional courier-mta packages in that
the webmail, imap/pop3, and maildrop components are not included
because they are supplied by the mail/sqwebmail, mail/courier-imap,
and mail/maildrop packages, respectively. When Courier-MTA is installed
together with Courier-IMAP and SqWebMail, they form an integrated
mail/groupware server suite that provides ESMTP, IMAP, POP3, webmail,
and mailing list services within a single, consistent, framework. A
web-based administration and configuration tool is included for
comprehensive configuration of the entire Courier software suite.
Many thanks to Yarema <yds@CoolRat.org> whose Courier port for FreeBSD
was an invaluable reference.
Firefox).
Thunderbird 1.5.0.2 offers improved stability, and several security fixes:
MFSA 2006-28 Security check of js_ValueToFunctionObject() can be circumvented
MFSA 2006-27 Table Rebuilding Code Execution Vulnerability
MFSA 2006-26 Mail Multiple Information Disclosure
MFSA 2006-25 Privilege escalation through Print Preview
MFSA 2006-24 Privilege escalation using crypto.generateCRMFRequest
MFSA 2006-22 CSS Letter-Spacing Heap Overflow Vulnerability
MFSA 2006-21 JavaScript execution in mail when forwarding in-line
MFSA 2006-20 Crashes with evidence of memory corruption (rv:1.8.0.2)
MFSA 2006-08 "AnyName" entrainment and access control hazard
MFSA 2006-07 Read beyond buffer while parsing XML
MFSA 2006-06 Integer overflows in E4X, SVG and Canvas
MFSA 2006-05 Localstore.rdf XML injection through XULDocument.persist()
MFSA 2006-04 Memory corruption via QueryInterface on Location, Navigator objects
MFSA 2006-02 Changing postion:relative to static corrupts memory
MFSA 2006-01 JavaScript garbage-collection hazards
For a detailed ChangeLog, see:
http://weblogs.mozillazine.org/rumblingedge/archives/2006/02/1-5-0-2.html
Packages Collection.
MIME::Lite::HTML is a Perl mail client interface for sending message that
supports HTML format and builds them for you. It provides routines to
transform a HTML page in MIME::Lite mail.
> Major changes compared to the IMP H3 (4.1) version are:
> * X-Color data, normally set by the fetchmail process, is now escaped
> to protect against malicious senders.
> * Added preference for default charset when reading messages.
> * Added preference to define how to expand the folder list in sidebar.
> * Fixed logins to Exchange and other IMAP servers that propagate wrong
> authentication methods.
> * Fixed creation of duplicate Virtual INBOXes.
> * Fixed spellcheck on send.
> * Updated Danish, Dutch, Greek, Estonian, French, Japanese and Norwegian
> translations.
> * More small bugfixes and improvements.
PKGLOCALEDIR and which install their locale files directly under
${PREFIX}/${PKGLOCALEDIR} and sort the PLIST file entries. From now
on, pkgsrc/mk/plist/plist-locale.awk will automatically handle
transforming the PLIST to refer to the correct locale directory.
+ Added shutdown_clients setting to control if existing imap/pop3 processes
should be killed when master is.
- Master login fixes, PLAIN authentication was still broken..
v1.0.beta6 2006-04-12
* The login and master usernames were reversed when using
master_user_separator (now the order is UW-IMAP compatible).
* Killing dovecot master process now kills all IMAP and POP3
processes also.
+ -a parameter to dovecot prints now all settings that Dovecot uses.
-n prints all settings that are different from defaults.
+ Added pop3_lock_session setting
+ %M modifier returns string's MD5 sum. Patch by Ben Winslow
- PLAIN SASL authentication wasn't working properly, causing failed
logins with some clients (broken in beta4)
- Fixes to Maildir++ quota, should actually work now
- Don't crash if passwd-file has entries without passwords
(eg. deny=yes databases)
- Fixed prefetch userdb to work nicely with other userdbs
- If master process runs out of file descriptors, don't go to
infinite loop (unlikely to have happened unless the OS's default
fd limit was too low)
- Fixed non-plaintext password lookups from LDAP. Patch by Lior Okman
- %U modifier was actually lowercasing the string. Patch by
Ben Winslow
WRKSRC explicitly to it's default value before it is used in the
exists() check just below it. This fixes the PLIST in the case where
mutt_dotlock is installed. Bump the PKGREVISION to 4.
* added Ukrainian translation by Serhij Dubyk
* fixed some Japanese and French translation strings
* updated Geogian and Norwegian Nynorsk translations
* updated some plugin translations
pkgsrc changes:
- install the admin/www/mailman-*.{pdf,ps,txt} documentation file, and
change MESSAGES to point to mailman-install.txt
changes between 2.1.7 and 2.1.8rc1:
- A cross-site scripting hole in the private archive script of 2.1.7
has been closed. Thanks to Moritz Naumann for its discovery.
- Bouncers support added: 'unknown user', Microsoft SMTPSVC, Prodigy.net
and several others.
- Updated email library to 2.5.7 which will encode payload into qp/base64
upon setting. This enabled backing out the scrubber related patches
including 'X-Mailman-Scrubbed' header in 2.1.7.
- Fix SpamDetect.py potential hold/reject loop problem.
- A warning message from email package to the stderr can cause error
in Logging because stderr may be detached from the process during
the qrunner run. We chose not to output errors to stderr but to
the logs/error if the process is running under mailmanctl subprocess.
- DKIM header cleansing was separated from Cleanse.py and added to
-owner messages too.
- Fixes: Lose Topics when go directly to topics URL (1194419).
UnicodeError running bin/arch (1395683). edithtml.py missing import
(1400128). Bad escape in cleanarch. Wrong timezone in list archive
index pages (1433673). bin/arch fails with TypeError (1430236).
Subscription fails with some Language combinations (1435722).
Postfix delayed notification not recognized (863989). 2.1.7 (VERP)
mistakes delay notice for bounce (1421285). show_qfiles: 'str'
object has no attribute 'as_string' (1444447). Utils.get_domain()
wrong if VIRTUAL_HOST_OVERVIEW off (1275856).
* Merge various patches for reliability
* Clean up error messages and typos
* Only log into SMTP server once
* SMTP AUTH
* Windows support
* HTML in titles
changes since 0.88:
* Bugfixes:
- libclamav/matcher.c: properly handle partial reads in cli_scandesc()
- libclamav/mbox.c: sync with CVS, fixes detection of Worm.Bagle.CT
- freshclam: fix support for LocalIPAddress
Patch by Anton Yuzhaninov <citrin*citrin.ru>
- docs/man: multiple manpage typo fixes
Patch by A. Costa <agcosta*gis.net>)
- shared/output.c: properly handle return value of vsnprintf
Thanks to Anton Yuzhaninov <citrin*rambler-co.ru>
- libclamav/htmlnorm.c: fix typo spotted by Gianluigi Tiesi
<sherpya*netfarm.it>
- sigtool/sigtool.c: fix possible crash in build(), thanks to Sven
- clamd/session.c: remove static timeout (5s) for SESSION
Pointed out by Joseph Benden <joe*thrallingpenguin.com>
- libclamav/pe.c: fix possible integer overflow reported by Damian Put
Note: only exploitable if file size limit (ArchiveMaxFileSize) disabled
- libclamav/scanners.c: properly report archive unpacking errors
Problem spotted by David F. Skoll <dfs*roaringpenguin.com>
- libclamav/others.c: fix possible crash in cli_bitset_test()
Reported by David Luyer <david_luyer*pacific.net.au>
- libclamav/zziplib: fix possible crash on FreeBSD
Reported by Robert Rebbun <robert*desertsurf.com>
- clamav-milter: fall back if sendfile() fails
- "sendmail -t" did not remove the CR from lines ending in CRLF.
- Workaround for fatal errors in PCRE maps when an expression in
() matches empty text (the PCRE library returns an inappropriate
error code).
- Fixes for non-security bugs that Coverity found in code that
handles impossible error conditions.
RECOMMENDED is removed. It becomes ABI_DEPENDS.
BUILDLINK_RECOMMENDED.foo becomes BUILDLINK_ABI_DEPENDS.foo.
BUILDLINK_DEPENDS.foo becomes BUILDLINK_API_DEPENDS.foo.
BUILDLINK_DEPENDS does not change.
IGNORE_RECOMMENDED (which defaulted to "no") becomes USE_ABI_DEPENDS
which defaults to "yes".
Added to obsolete.mk checking for IGNORE_RECOMMENDED.
I did not manually go through and fix any aesthetic tab/spacing issues.
I have tested the above patch on DragonFly building and packaging
subversion and pkglint and their many dependencies.
I have also tested USE_ABI_DEPENDS=no on my NetBSD workstation (where I
have used IGNORE_RECOMMENDED for a long time). I have been an active user
of IGNORE_RECOMMENDED since it was available.
As suggested, I removed the documentation sentences suggesting bumping for
"security" issues.
As discussed on tech-pkg.
I will commit to revbump, pkglint, pkg_install, createbuildlink separately.
Note that if you use wip, it will fail! I will commit to pkgsrc-wip
later (within day).
which were fixed again in beta5.
patch-ac and patch-ad were taken from CVS and are not needed anymore.
Changes in Dovecot 1.0beta4:
* Changed the default lock_method back to fcntl. Apparently flock
gives problems with some systems.
* mbox: mailboxes beginning with '.' are now also listed
* Replaced mail_use_modules and mail_modules settings with mail_plugins
and mail_plugin_dir. Now instead of loading all plugins from the
directory, you'll have to give a list of plugins to load. If the
plugin couldn't be loaded, the process exits instead of just
ignoring the problem (this is important with ACL plugin).
+ Added support for "master users" who can log in as other people.
The master username can be given either in authorization ID
string with SASL PLAIN mechanism or by setting
auth_master_user_separator and giving it within the normal username
string.
+ Added ACL plugin with ACL file backend. This however doesn't mean
that there yet exists a proper shared folder support. If master user
logged in as someone else, the ACLs are checked as the master user.
+ Added some Dovecot extensions to checkpassword passdb, see ChangeLog
+ Updated passwd-file format to allow specifying any key=value fields
+ Maildir++ quota support and several quota fixes
+ passdb supporting extra fields: Added "allow_nets" option which takes
a comma separated list of IPs/networks where to allow user to log in.
+ NFS: Handle ESTALE errors the best way we can
+ IMAP now writes to log when client disconnects
+ In shared mailboxes (if dovecot-shared file exists) \Seen flags are
now kept only in index files, so as long as each user has a separate
index file they have separate \Seen flags.
- Fixes to DIGEST-MD5 realm handling so it works with more clients
- BODYSTRUCTURE -> BODY conversion from cache file was broken with
mails containing message/rfc822 parts.
- Fixed several memory leaks
- We could have sent client FETCH notifications about messages before
telling about them with EXISTS
- Compiling fixes for Solaris and some other OSes
- Fixed problem with internal timeout handling code, which caused eg.
outlook-idle workaround to break.
- If /dev/urandom didn't exist, we didn't seed OpenSSL's random number
generator properly. Patch by Vilmos Nebehaj.
- Maildir: Recent flags weren't always immediately removed from mails
when mailbox was opened.
- Several changes to SSL proxying code, hopefully making it work
better.
Changes in Dovecot 1.0beta5:
- Beta4's SSL proxying rewrite worked worse than I thought.
Reverted it back to original code.
- Filesystem quota plugin now looks up the mount path correctly.
This version allows changing of the paths for spamd chroot, spamd database,
pfctl binary and configuration file. This allows spamd to just work
for different configurations.
Based on patches and suggestions from Jeremy C. Reed and Johnny Lam.
filter language, and is now a generic and complete filter rule frontend that
currently is able to create Sieve, procmail, maildrop, and IMAP filter rules.
The IMAP filter driver translates the filter rules on demand to IMAP commands,
executed via PHP's IMAP extension and has replaced IMP's internal filtering
code. It is now the default filtering agent in IMP H3 (4.x).
Evolution Exchange 2.6.0 2006-03-13
--------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#271567 - messages with horizontal tab character in subject header
stay in outbox (Sankar)
#272749 - Email invitations accepted into exchange calendar are not
saved (Chenthill)
#273057 - Meetings gets deleted after updates for Recurrence accepted
(Chentill)
#332129 - Modify OWA to http instead of https for ssl configured server,
connector crashes during authentication (Sushma)
#317432 - POTFILES list non-shipped files (Sebastien Bacher)
#333603 - while deleting tasks exchange storage crashes (Chenthill)
#323990 - Evolution locks up trying to accept a calendar event (sushma)
Other fixes:
- Calendar modifications and deletions related fixes (Chenthill)
- Memory leak fixes. See #329251 (Sushma)
Evolution Exchange 2.5.92 2006-02-13
--------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#331980 - Connector crashes on account changed signal (Sushma)
Other Fixes:
- Memory leak fixes. See #329251 (Sushma)
- UI locking issue while loading the huge calendars and not showing
some calendar items in Evolution which is seen in outlook (Chenthill)
Evolution Exchange 2.5.91 2006-02-13
--------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#328507 - evolution-exchange-storage crashes with
e_folder_exchange_search_start: assertion
`E_IS_FOLDER_EXCHANGE (folder)' failed. (Sushma)
#330221 - Evolution crashes when birthday/anniversary field values are
set to NONE (Sushma)
#330224 - Exchange contacts fail to save mailing addresses (Sushma)
#330640 - Exchange storage crashes after modifying a single instance
of recurring meeting.
#330504 – Mnemonic missing for most of the fields in 'Receiving Options'
#311017 - Unable to delete mails in online mode with evolution started
in offline mode. (Arun Prakash)
#330663 - Exchange connector crashed when accepted updates for
recurring meeting (Chenthill)
Other Fixes:
Notify read only status to the client in set_mode (Chenthill)
Fixed lots of memory leaks, See #329251. (Sushma)
Evolution Exchange 2.5.9.0 2006-01-30
--------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#327312 - Search contact in GAL in offline, connector does not return
failed search (Sushma).
#327306 - Evolution hanged in offline after serching for contacts in
exchange personal addressbook (Sushma).
#327318 - User should not be able to save contacts when evolution
switches to offline (Sushma).
Other Fixes:
Corrected Evolution offline handling with NetWork Manager support.
See #327343 (Sushma)
Evolution Exchange 2.5.5.1 2006-01-18
--------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#327305 - Cannot access exchange calendars (Sushma & Chenthill)
#323115 - --force-shutdown does not shutdown e-d-s, exchange part
(Sushma)
Other Fixes
Add evolution-plugin to the EXCHANGE_STORAGE dependency list as it
uses functions from libeutil, which is in evolution-plugin's .pc file.
(Tor Lillqvist)
Evolution Exchange 2.5.5 2006-01-16
------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#325717 - Exchange calendar does not switch to offline (Sushma)
#325726 - Infinite loop in calendar on switch folder selection
in offline mode (Sushma)
#273546 - 'Expunge' on junk deletes mail's in junk (Sushma)
#323115 - --force-shutdown does not shutdown e-d-s, exchange part
(Sushma)
Other Fixes
- Handling the instances with no master object and checking for the
RIDs and master component of the object. Fixes two crashes and also
fixes the problem of recurring exception events not appearing
(Chenthill).
- Using proper e-account-list.h and e-account.h files (Simon Zheng).
- Using e_util_mkdir_hier() and e_util_strstrcase() instead of make_dir
and e_strstrcasea() respectively (Simon Zheng).
Evolution Exchange 2.5.4 2006-01-02
------------------------------------
Updated Translations:
- Added "ca" "da" "mk" "ru" "vi" "zh_HK" (Abel Cheung)
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#315105 - select exchange calendar for offline support gets unchecked
(Sushma)
#315605 - "Could not authenticate to server" error message after
switching from offline to online (Sushma)
#315333 - Incorrect password message for right password (Sushma)
Other Fixes
- Changed from createControls for new shell apis (Simon Zheng)
Evolution Exchange 2.5.3 2005-12-12
------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#235580 - Evo not handling Outlook recurring mtg. changes well (Sarfraaz)
#316315 - Evolution exchange storage crashes on ECalendar sync (Varadhan)
Other Fixes
- Removed exchange out-of-office handling form here, which is
implemented in libexchange-storage (Sushma)
- WIN32 support fixes. (Tor Lillqvist)
- Remove duplicate code, which also exists in e-d-s/servers/exchange
and unused files. (Tor Lillqvist)
- Returning proper error code if calendar authentication fails (sushma)
- In set_mode() returning if failed to get the folder, and setting the
mode at the end. (sushma)
- using e-uid.h from libedataserver and not from e-util (Irene)
Evolution Exchange 2.5.2 2005-11-14
------------------------------------
Updated Translations : (Since July 2005)
- ku (Erdal Ronahi)
- cs (Miloslav Trmac)
- es (Francisco Javier F. Serrador)
Evolution Exchange 2.5.1 2005-10-24
------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi)
#274262 - Switch from offline to online, click on 'clear' in contacts, throws error message (Shakti)
#247015 - Evolution not freeing resources time for deleted meetings (Arunprakash)
#314573 - Evolution exchange storage crashes after subscribing to other's Inbox and restart evolution (Arunprakash)
#315342 - Not able to see existing mails after configuring exchange account (Arunprakash)
#241499 - Cryptic Error message when a saving contact without permission (Shakti)
#272987 - Error message is wrong for 'Expunge' operation in offline (Arunprakash)
#314019 - Exchange connector crashed on creating appointment in subscribed calendar (Sarfraaz)
#239641 - Filter rules flag new messages as "read" when moving from IMAP inbox to exch subfolder (Arunprakash)
#314746 - Syncing passwords across components fails for Exchange (Sarfraaz) #302378 - One typo in .po file (Sarfraaz)
#312848 - Delete option should be disabled for default Tasks list under exchange account (Sarfraaz)
Updated Translations : (Since July 2005)
- bg (Alexander Shopov)
- ca (Xavier Conde Rueda)
- cs (Miloslav Trmac)
- da (Martin Willemoes Hansen)
- de (Hendrik Richter & Frank Arnold)
- el (Kostas Papadimas & Nikos Charonitakis)
- en_CA (Adam Weinberger)
- es (Francisco Javier F. Serrador)
- et (Priit Laes)
- fa (Alireza Kheirkhahan & Meelad Zakaria)
- fi (Ilkka Tuohela)
- fr (Christophe Merlet)
- gl (Ignacio Casal Quinteiro)
- gu (Ankit Patel)
- hu (Gabor Kelemen)
- ja (Satoru SATOH)
- lt (Žygimantas Beručka)
- nb (Kjartan Maraas & Terance Sola)
- nl (Vincent van Adrighem)
- no (Kjartan Maraas & Terance Sola)
- pl (Artur Flinta)
- pt (Duarte Loreto)
- pt_BR (Raphael Higino)
- ro (Dan Damian)
- ru (Nickolay V. Shmyrev)
- sk (Marcel Telka)
- sq (Laurent Dhima)
- sr (Danilo Šegan)
- sr@Latn (Danilo Šegan)
- sv (Christian Rose)
- th (Udomsak Chundang & Theppitak Karoonboonyanan)
- tr (Baris Cicek)
- uk (Maxim Dziumanenko)
- vi (Clytie Siddall)
- zh_CN (Funda Wang)
- zh_TW (Chao-Hsiung Liao)
- a new Memo Component
- a new Look for the Event/Task/Meeting Editor
- Calendar Publishing support
- CalDAV support
- Network Manager support
- HULA connectivity support
- Improved GroupWise support
- Improved Event Recurrence support
- Calendar Tooltips
- CSV/tab importers for Mozilla, Outlook and Evolution formats
- Contact list support for LDAP addressbooks
- Support for saving Advanced Searches for Address books
- Support for Prioritizing messages in the composer
- Lots of bug fixes and lots of other User Interface Improvements
- Updated Translations
Evolution-Data-Server 1.6.0, 2006-03-13
----------------------------------------
What is new since 1.4.0 :
- Memos backend
- CALDAV backend
- Improved Recurrence support for Calendar
- Lots of bug fixes and code clean-ups
Bug fixes since 1.4.0 :
http://go-evolution.org/Evo2.6.0#Evolution-Data-Server
Evolution-Data-Server 1.5.92, 2006-02-27
----------------------------------------
Bug fixes since last release :
http://go-evolution.org/Evo2.5.92#Evolution-Data-Server
Updated Translations:
- ca (Josep Puigdemont i Casamajó)
- el (Kostas Papadimas)
- et (Priit Laes)
- eu (Inaki Larranag)
- lt (Žygimantas Beručka)
- pl (Artur Flinta)
- th (Theppitak Karoonboonyanan)
Evolution-Data-Server 1.5.91, 2006-02-13
----------------------------------------
Bug fixes since last release :
http://go-evolution.org/Evo2.5.91#Evolution-Data-Server
Updated Translations:
- cs (Lukas Novotny)
- cs (Miloslav Trmac)
- cy (Rhys Jones)
- et (Ivar Smolin)
- fi (Ilkka Tuohela)
- ja (Takeshi AIHANA)
- pt (Duarte Loreto)
- ru (Leonid Kanter)
- sq (Laurent Dhima)
- sr, sr@Latn (Slobodan D. Sredojevic)
- th (Supranee Thirawatthanasuk)
- th (Theppitak Karoonboonyanan)
Evolution-Data-Server 1.5.90, 2006-01-30
----------------------------------------
What's new:
Bug fixes sinces 1.5.5 :
http://bugzilla.gnome.org/buglist.cgi?query_format=advanced&short_desc_type=allwordssubstr&short_desc=&classification=Desktop&product=Evolution-Data-Server&long_desc_type=substring&long_desc=&status_whiteboard_type=allwordssubstr&status_whiteboard=&keywords_type=allwords&keywords=&bug_status=RESOLVED&resolution=FIXED&resolution=WONTFIX&resolution=DUPLICATE&resolution=NOTABUG&resolution=NOTGNOME&resolution=INCOMPLETE&resolution=INVALID&resolution=GNOME1.x&resolution=MOVED&resolution=OBSOLETE&resolution=NOTXIMIAN&emailassigned_to1=1&emailtype1=substring&email1=&emailassigned_to2=1&emailreporter2=1&emailqa_contact2=1&emailcc2=1&emailtype2=substring&email2=&bugidtype=include&bug_id=&chfieldfrom=2006-01-17&chfieldto=Now&chfield=bug_status&chfieldvalue=RESOLVED&cmdtype=doit&order=Reuse+same+sort+as+last+time&field0-0-0=noop&type0-0-0=noop&value0-0-0=
Updated Translations:
- en_CA (Adam Weinberger)
- es (Francisco Javier F. Serrador)
- et (Ivar Smolin)
- fi (Ilkka Tuohela)
- gl (Ignacio Casal Quinteiro)
- gu (Ankit Patel)
- gu (Ankit Patel)
- ko (Changwoo Ryu)
- nb, no (Kjartan Maraas)
- nl (Tino Meinen)
- vi (Clytie Siddall)
- zh_CN (Funda Wang)
- zh_TW, zh_HK (Chao-Hsiung Liao)
Evolution-Data-Server 1.5.5, 2006-01-16
----------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi):
#321812 – crash during Draft saving in offline mode (Shreyas)
#314841 – gw: Don't Mark Trash As New Messages (Parthasarathi)
#323570 – gw: Forward Of Multiple Messages At Once Loses Formatting (Parthasarathi)
#320898 – gw: Inserted Images Appears As Broken Link Image (Parthasarathi)
#303998 – In 'Exchange Connector' GAL should be selected for 'Autocompletion by default (Sushma)
#323115 – --force-shutdown does not shutdown e-d-s (Harish)
#326060 – Exchange password expiry handling is broken (Sushma)
#267402 – can not specify https URL for a remote calendar location (Tony Tsui)
#324518 – Webcal Entries Duplicated In Calendar (Chenthill)
#324741 – Critical Warning on Command Line (Chenthill)
#214977 – Contact lists on LDAP server are broken (Sushma)
#320065 – Fix GList leaks (Ross Burton)
#325959 – Subscribe to other user's folder not working (Sushma)
#242966 – Focus Problem, Screen Entry on "Select Contacts From Address Book" screen (Johnny Jacob)
Other Fixes :
- Merge Calendar backend bits from evolution-caldav module into EDS (Harish)
- Code cleanup (Simon Zheng, Kjartan Maraas, Parthasarathi)
- Win32 fixes (Tor Lillqvist)
Updated Translations:
- bg (Alexander Shopov)
- ca (Josep Puigdemont i Casamajó)
- gl (Ignacio Casal Quinteiro)
- ja (Takeshi AIHANA)
- lt (Žygimantas Beručka)
- nl (Vincent van Adrighem)
Evolution-Data-Server 1.5.4, 2006-01-02
----------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi):
#323106 - IMAP drawers with non-ASCII UTF-8 names do not work (Tor Lillqvist)
#317794 - Groupwise mail folder not visible (Parthasarathi)
#324483 - Memory leak in Exchange connector (Sushma)
#305006 - Fixed vCalendar file import without UID (Chenthill)
#267330 - Fixed a crash/hang while accepting exchange meeting invititation (Chenthill)
#324009 - Hang in Evolution Calendar (Chenthill)
#317411 - Fixed Evolution crash while synchronizing with palm device. (Varadhan)
#238979 - Added Support to expand contact lists inline in name selector entry
Other Fixes :
- Added option to select emails in contacts/lists in name selector
entry (Srinivasa Ragavan)
- Modifications to use gstdio wrappers (Tor Lillqvist)
- Exchange fixes (Sushma)
- Network Manager Support (Shreyas)
- Win32 fixes (Tor Lillqvist)
Updated Translations:
- en_CA (Adam Weinberger)
- es (Francisco Javier F. Serrador)
- fi (Ilkka Tuohela)
- gl (Ignacio Casal Quinteiro)
- gu (Ankit Patel)
- ja (Takeshi AIHANA)
- nb, no (Kjartan Maraas)
- nn (Åsmund Skjæveland)
- vi (Clytie Siddall)
Evolution-Data-Server 1.5.3, 2005-12-12
----------------------------------------
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi):
#323433 - Evolution crashes when folding vfolder subfolders while in one,
wont restart (Jeff Cai)
#321139 - evolution will crash on solaris when print error message (Shi Pu)
#321515 - Lazy-bind loaded modules in camel (Ross Burton)
#322408 - creating new folder causes evolution to hang on the uw-imapd
server (Jeff Cai)
#317322 - crash when delete a imported recurrent event (Chenthill)
#318777 - recurrence editing ... (Chenthill)
#323349 - Evolution data server, Configuration failed on Solaris (Irene Huang)
#319592 - Use GLib for determining host endian (Ross Burton)
#319591 - Use G_DEFINE_TYPE in libedataserver (Ross Burton)
#321830 - GW - Not All Email In Sent Items Appearing In Evolution (Parthasarathi)
Other Fixes :
- Numerous fixes in Camel/Libebook/libedataserver for Win32 support (Tor Lillqvist)
- Hula provider fixes (Harish)
- Exchange : Use remembered password for authentication (Irene Huang)
- Exchange : fix compiler warnings (Sushma)
- Build fixes (Dave Malcolm)
Updated Translations:
- be (Vital Khilko)
- bg (Alexander Shopov)
- cs (Miloslav Trmac)
- en_CA (Adam Weinberger)
- es (Francisco Javier F. Serrador)
- fa (Meelad Zakaria)
- fr (Christophe Merlet)
- gl (Ignacio Casal Quinteiro)
- gu (Ankit Patel)
- ja (Takeshi AIHANA)
- nb, no (Kjartan Maraas)
- zh_CN (Funda Wang)
Evolution-Data-Server 1.5.2, 2005-11-14
---------------------------------------
New Features:
- Camel Hula Provider (Harish)
Bugzilla bugs fixed (see http://bugzilla.gnome.org/show_bug.cgi):
#320095 - Empty Trash Deletes From GW POA, But Doesn't Delete Headers
In Trash Folders (Parthasarathi)
#314476 - Fixes to inform the Over quota issue in groupwise to
user (Sankar)
#320736 - Fixed a possible crash due to a invalid buffer
(Parthasarathi)
#317804 - Fix Macao timezone issue (Harish)
#318130 - Fix to include e-cal-time-util.h for
e-cal-backend-http.c to solve a build issue. (Matthew Daniel)
#319612 - Stop warnings from e-destination about xmlChar when
compiling using gcc4 (Ross Burton)
#319848 - Multiple Select for To/CC/BCC in Name selector dialog.
(Sushma)
Other Fixes:
- Changed the string so as to be consistent with Win32 client error
messages. (Sankar)
Update Translations:
- ca (Adam Weinberger)
- cs (Miloslav Trmac)
- es (Francisco Javier F. Serrador)
- fi (Ilkka Tuohela)
- ja (Takeshi AIHANA)
- ku (Erdal Ronahi)
Evolution-Data-Server 1.5.1, 2005-10-25
---------------------------------------
New Features : Support for Memos component (Nathan Owens)
Other fixes :
- Win32 related bits and code clean-up (Tor Lillqvist)
- Remove Bonobo/GnomeProgram dependencies in
contact store/name selector (Ross Burton)
- Fix for API/Base Version mismatches causing issues in
Solaris where libdir==libexecdir (Irene Huang)
Updated Translations:
- en_CA (Adam Weinberger)
- es (Francisco Javier F. Serrador)
- gl (Ignacio Casal Quinteiro)
- added Mail::Milter::Module::AccessDB
- Mail::Milter::Module::MailDomainDotMX needed a "use Net::DNS"
- improved Mail::Milter::Wrapper::DecodeSRS parsing to understand
Mail::SRS::Guarded munging where the original localpart
already contained an equals (=) character
- added Mail::Milter::Module::SPF
- added Mail::Milter::Module::MailFakeNull
- added Mail::Milter::Module::HeaderValidateMIME
- added method check_superdomains() to
Mail::Milter::Module::MailDomainDNSBL, allowing use of e.g.
surbl.org blacklist with MAIL FROM:<> addresses
* MIME filename encoding with RFC 2322 parameter value extension was
supported.
* The clear button for the quick search entry was added.
* The bug that bold face was disabled in GtkTreeView with GLib 2.10
and Pango 1.12 was fixed.
* Win32: libwimp.dll was updated.
* Win32: The bug that subfolders were duplicated when rebuilding
folder tree while the settings were shared between Win32 and Unix
was fixed.
* Win32: The uninstaller was modified so that it only removes files
and folders created by the installer.
Also remove extra blank lines at the end of options.mk to appease pkglint.
* 2.2.3 (stable)
* The sorting of the result of the query search was enabled.
* The printing of messages now follows the state of 'Show all headers'.
* Relative path is allowed for signature files.
* The To, Cc, and Bcc button of the address book are now always enabled.
* The window position of the address book is now preserved.
* The toggle of the Cc entry on the composition window was enabled.
* The appearance of the address book was modified.
* Unix: The support of metamail command was removed, and it was replaced
with the alternative implementation.
* Win32: libwimp.dll was updated, and the appearance of the UI was
improved.
* Win32: zlib1.dll was updated.
* Win32: The application icon was updated.
* Win32: The unnecessary message catalog files were removed to reduce the
archive size.
