Changelog:
FIXED
Security fixes can be found here
FIXED
Adjusting font size when composing emails should be easier (Bug 824926)
Fixed in Thunderbird 17.0.5
MFSA 2013-40 Out-of-bounds array read in CERT_DecodeCertPackage
MFSA 2013-38 Cross-site scripting (XSS) using timed history navigations
MFSA 2013-36 Bypass of SOW protections allows cloning of protected nodes
MFSA 2013-35 WebGL crash with Mesa graphics driver on Linux
MFSA 2013-34 Privilege escalation through Mozilla Updater
MFSA 2013-32 Privilege escalation through Mozilla Maintenance Service
MFSA 2013-31 Out-of-bounds write in Cairo library
MFSA 2013-30 Miscellaneous memory safety hazards (rv:20.0 / rv:17.0.5)
File too long (should be no more than 24 lines).
Line too long (should be no more than 80 characters).
Trailing empty lines.
Trailing white-space.
Trucated the long files as best as possible while preserving the most info
contained in them.
COMMENT should not be longer than 70 characters.
COMMENT should not begin with 'A'.
COMMENT should not begin with 'An'.
COMMENT should not begin with 'a'.
COMMENT should not end with a period.
COMMENT should start with a capital letter.
pkglint warnings. Some files also got minor formatting, spelling, and style
corrections.
1.9.1 02-March-2013
---------------------------------------------
- Disable query cache for Sqlite.
- Handle missing mysqld better.
- Ignore my.cnf settings when using the internal MySQL server.
1.9.0 23-December-2012
---------------------------------------------
- Respect collection cache policy refresh interval for collection tree sync.
- Fix initialization of PostgreSQL database.
- Correctly count items flags in virtual collections.
- Notify parent virtual collections about item changes.
- Require CMake >= 2.8.8.
- Remove dependency to Automoc4.
- Support Qt 5.
1.8.80 12-November-2012
---------------------------------------------
- Recover from lost external payload files.
- Improve the virtual collections handling.
- Notify clients about database schema updates.
- Reduce item access time updates.
- Make use of referential integrity if supported by the database backend.
- Add prepared query cache.
- Many code and queries optimizations.
1.8.1 14-October-2012
---------------------------------------------
- Fix payload loss on some move/copy scenarios.
- Improve error reporting for failed item retrievals.
1.8.0 25-July-2012
---------------------------------------------
- Fix deadlock in ad-hoc Nepomuk searches.
1.7.95 11-July-2012
---------------------------------------------
- Fix Nepomuk queries getting stuck if Nepomuk service crashes.
- Fix unecessary remote retrieval of already cached item parts.
- Reset RID/RREV during cross-resource collection moves.
- Increase timeout for remote item retrieval.
1.7.90 08-June-2012
---------------------------------------------
- Fix handling of large SPARQL queries.
- Support cleanup of orphaned resources in the consistency checker.
- Support compilation with Clang.
1.) Fix broken "yasm" version check which only accepts version numbers
like "a.b.c.d" but not like "a.b.c" and therefore fails with
Yasm 1.2.0. This probably affects other platforms (e.g. Linux
as well).
2.) Use "-R" instead of non-portable "-rpath" linker option.
The build under Solaris 10 fails now during the build phase and not
already in the configuration phase.
- More Solaris build fixes (Jim Klimov)
- Use ZZ for unknown GeoIP country
- Fix swapped %f and %r for stat example in default greylist.conf
- Support p0f v3.06 and up with --with-p0f-src or --enable-p0f306
Patch provided by Richard Palo in private e-mail.
Approved by Thomas 'wiz' Klausner.
- Seperated POP/IMAP/SMTP code into a seperate library so that it
can be used with different applications. Now "poppy" handles just
config file reading and pretty-printing.
- Intial draft of a spamkill application. Deletes spams based on the
headers on a POP3/IMAP server. Requires customization for your
setup.
1.8.7: Release date: 2012-12-25 17:28 UTC
* Bug #5333: Fix more return by reference errors [alec]
* Bug #19754: Fix compatibility with PHP4 [alec]
1.8.6: Release date: 2012-10-23 09:52 UTC
* Bug #19473: PEAR::isError() compatibility problem with PHP 5.4 [alec]
* Bug #19497: Attachment filename is cut on slash character [alec]
* Bug #19665: Add Mail-Reply-To and Mail-Followup-To to structured recipient
headers list [alec]
Fix bug #SF3596147: Allow arbitrarily long configuration file lines.
Fix bug #SF3596229: Fix logging of signature errors, which logged
the domain name twice instead of the domain name and the
selector.
Safely handle incoming Authentication-Results fields with large number
of tokens.
Avoid mixing up status codes when processing conf_logresults, leading
to confusing log entries.
Fix ADSP logging.
== [release-1-8-6] 1.8.6: 2013-03-04
A bug fix release of 1.8.5.
=== milter-core
==== Improvements
* [core][event-loop] Add an API to customize event loop on your own.
==== Fixes
* [core][event-loop] Fix to work broken libev backend with Ruby 1.9.
=== milter manager
==== Improvements
* Add max-pending-finished-sessions as configuration option.
If the number of current pending finished sessions is larger than
'max-pending-finished-sessions', the current pending finished sessions are
freed immediately.
=== milter-client
==== Improvements
* Add --max-pending-finished-sessions command line option.
=== Ruby milter
==== Improvements
* Add an API to customize event loop on your own from Ruby.
* Support manager.max_pending_finished_sessions.
* Add API to reset when transaction is finished.
Use this API to avoid not to share instance information for each transaction unexpectedly.
=== Document
==== Improvements
* Add documentation about manager.max_pending_finished_sessions
* Add API to reset transaction.
==== Fixes
* Fix the default value of manager.maitenance_interval which is not correct.
- fix a bug that could crop up when retrieving mail via IMAP from
Gmail, and the Gmail servers provided weird data in their header
extensions. Thanks: Krzysztof Warzecha.
== HEAD
== Version 2.5.3 - Sun Dec 4 15:52:00 +1100 2012 Mikel Lindsaar <mikel@reinteractive.net>
* Close pull request 468 - Remove debug output to STDOUT (tadman)
* Fix up spec warnings
* Remove un needed require
* Ensure spec_helper constants only defined once
* Use stub against time instead of DateTime to avoid double redefinition error
== Version 2.5.2 - Sun Nov 18 15:01:00 +1100 2012 Mikel Lindsaar <mikel@reinteractive.net>
* Removing double loading of treetop parsers to remove warnings
* Making parsers auto compile on spec suite and load in production code to avoid error that caused yank of 2.5.0
* Reapply pull request 443 - CC fields with semicolon are now parsed right (paulwittmann)
== Version 2.5.1 - Sun Nov 18 14:01:00 +1100 2012 Mikel Lindsaar <mikel@reinteractive.net>
* Yanked 2.5.0
* Reverted pull request 443 - CC fields with semicolon are now parsed right (paulwittmann)
== Version 2.5.0 - Sun Nov 18 12:20:00 +1100 2012 Mikel Lindsaar <mikel@reinteractive.net>
Features:
* Close pull request 406 - Add Mail#eager_autoload! to load all autoloaded files on demand (bpot)
* Close pull request 461 - Allow string as delivery_method (skyeagle, radar)
* Close pull request 407 - Do not require Net::IMAP or Net::POP if they're already loaded (bpot)
* Close pull request 400 - Raise exception if delivery values or from values are missing completely from an email that is getting delivered (dmathieu)
* Close pull request 397 - Support dots in local part of the addresses (eac)
* Close pull request 477 - Fixed handling content_type with superfluous spaces (ledermann)
* Close pull request 451 - Ignore nil in addresses so things do not blow up when e.g. a user had no email (grosser)
* Close pull request 362 - Enable TLS in Ruby 1.8 (kingargyle)
* Close pull request 358 - Fix Mail::CommonAddress#value=, Mail::CommonAddress#<< and Mail::Encodings.encode_non_usascii (mrkn)
* Close pull request 350 - Makes mail Header object ennumerable (ged)
Performance:
* Close pull request 369 - Mail::Header#charset is called pretty often during header parser work (bogdan)
* Close pull request 368 - Improve existing code by moving some objects to contstant instead of constructing them over and over again. (bogdan)
* Close pull request 366 - Headers parsing performance optimization (bogdan)
* Close pull request 365 - Add maximum_amount of parsed headers configuration parameter (bogdan)
Bugs:
* Close pull request 444 - Fix typo in spec (cczona)
* Close pull request 439 - Fix Ruby 1.9 behaviour to match 1.8.7 behaviour on ignoring invalid or undefined characters (ochko)
* Close pull request 430 - Unstructured field converts to string before calling encoding on it (brupm mikel)
* Close pull request 424 - Use String#to_crlf instead of String#gsub (okkez)
* Close pull request 429 - Fix an obvious bug in exim delivery_method (dskim)
* Close pull request 425 - Remove Gemfile.lock from generated gem (kbackowski)
* Close pull request 414 - Fix typo on "ignoring" (derwiki)
* Close pull request 405 - Fix stack overflow (RegexpError) triggered by large emails with an envelope (bpot)
* Close pull request 402 - Prevent InReplyTo, Keyword, References or ResentMessageId fields from generating lines longer than 998 chars (pplr)
* Close pull request 391 - Fixed failed attachment parsing when file name in headers contains spaces and is not wrapped in quotes (danieltreacy)
* Close pull request 385 - Fix Multibyte::Chars#upcase/downcase (technoweenie)
* Close pull request 384 - copy dat unicode over from active support (technoweenie)
* Close pull request 380 - Split strictly on MIME boundary lines (ConradIrwin)
* Close pull request 277 - Fix specific email decoding failure example (yalab)
* Close pull request 361 - Support 8bit encoding for ruby 1.9 (bogdan)
* Close pull request 346 - Fix two bugs of TestRetriever (ermaker)
* Close pull request 337 - Make the behavior of value_decode the same between Ruby 1.8 and Ruby 1.9. (kennyj)
* Close pull request 336 - Fix more warning: possibly useless use of == in void context (kennyj)
* Close pull request 293 - make charset and mime type more resliant to bad header values (kmeehl)
* Fix failing spec Issue 453 on Ruby 1.9.3
* Fix mail reading: don't raise invalid byte sequence in UTF-8 when reading non-UTF-8 emails (mreinsch)
* Close pull request 353 - define NilClass#blank? only if not defined yet (amatsuda)
* Close pull request 357 - Fixes#349 an inverted condition on imap open read_only (felixroeser)
* Remove duplicated line feed from regexp
* Remove unused variable
* Updated IMAP documentation
* Tweak publisher
objects, so provide a dummy file which will always get included to avoid
issues on systems where you are not allowed an empty library. Noticed
by tron.
Bump PKGREVISION.
Changelog:
FIXED
Security fixes can be found here
FIXED
Attachments sometimes could not be removed from the composition window using the keyboard, this is now fixed (799451)
Fixed in Thunderbird 17.0.3
MFSA 2013-28 Use-after-free, out of bounds read, and buffer overflow issues found using Address Sanitizer
MFSA 2013-27 Phishing on HTTPS connection through malicious proxy
MFSA 2013-26 Use-after-free in nsImageLoadingContent
MFSA 2013-25 Privacy leak in JavaScript Workers
MFSA 2013-24 Web content bypass of COW and SOW security wrappers
MFSA 2013-21 Miscellaneous memory safety hazards (rv:19.0 / rv:17.0.3)
- fix retrieving mail from an IMAP mailbox with non-ASCII characters
in its name causing difficult-to-understand unicode errors during
delivery. Thanks: "fsLeg", Krzysztof Warzech.
== 1.21 / 2013-02-09
* New MIME Types:
* Various new or updated MIME types by Garret Alfert:
application/vnd.ms-fontobject, .eot; application/x-chrome-extension, .crx;
application/x-web-app-manifest\+json, .webapp; application/x-xpinstall,
.xpi; image/svg\+xml, .svg, .svgz; image/webp, .webp; text/cache-manifest,
.appcache, .manifest. https://github.com/halostatue/mime-types/pull/24
* Fixed some Manifest.txt related madness on Travis.
== 1.20.1 / 2013-01-26
* New MIME Types:
* Apple iWork document types added by Hans de Graaff
(application/x-iwork-keynote-sffkey, .key;
application/x-iwork-pages-sffpages, .pages;
application/x-iwork-numbers-sffnumbers, .numbers).
https://github.com/halostatue/mime-types/issue/20
* epub, ibooks, mobi, and DMG content types by Mauricio
Linhares (mac:application/x-apple-diskimage, .dmg; application/epub\+zip,
.epub; application/x-ibooks\+zip, .ibooks; application/x-mobipocket-ebook,
.mobi). https://github.com/halostatue/mime-types/issue/22
* rss content type by Garret Alfert (application/rss\+xml, .rss).
https://github.com/halostatue/mime-types/issue/23
* Added or updated MIME types from the latest IANA list.
* Fixed MIME Types:
* Excel macro-enabled spreadsheets had an incorrect extension. Thanks to
Rafael Belvederese for reporting this issue.
https://github.com/halostatue/mime-types/issue/21
* Enabled for use with travis.
* Enabled gem signing.
* Fixed an error related to MIME type downloads.
* This was previously published as 1.20, but I had forgotten some attributions.
by poppnk, othyro and supported by lots of others.
Minimalist stands for Minimalistic Mailing Lists Manager. Although it is
declared as minimalistic, it has many features as his eldest brosers, such
as Majordomo and so on, but in contrast to them it is very small, fast,
simple for setup and maintenance. Also it has very clean internal structure
and if you are familiar with Perl, you can add as many additional features,
as you need.
CHANGELOG Roundcube Webmail
===========================
- Fix #countcontrols issue in IE<=8 when text is very long (#1488890)
- Fix unwanted horizontal scrollbar in message preview header (#1488866)
- Add workaround for IE<=8 bug where Content-Disposition:inline was ignored
(#1488844)
- Fix XSS vulnerability in vbscript: and data:text links handling (#1488850)
- Fix absolute positioning in HTML messages (#1488819)
- Fix keybord events on messages list in opera browser (#1488823)
- Fix cache (in)validation after setting \Deleted flag
- Fix selection of collapsed thread rows (#1488772)
- Fix wrapping of quoted text with format=flowed (#1488177)
- will look at making recently requested changes in a subsequent commit
8.14.6/8.14.6 2012/12/23
Fix a regression introduced in 8.14.5: if a server offers
two AUTH lines, the MTA would not read them after
STARTTLS has been used and hence SMTP AUTH for
the client side would fail. Problem noted by Lena.
Do not cache hostnames internally in a non case sensitive way
as that may cause addresses to change from lower case
to upper case or vice versa. These header modifications
can cause problems with milters that rely on receiving
headers in the same way as they are being sent out such
as a DKIM signing milter.
If MaxQueueChildren is set then it was possible that new queue
runners could not be started anymore because an
internal counter was subject to a race condition.
If a milter decreases the timeout it waits for a communication
with the MTA, the MTA might experience a write() timeout.
In some situations, the resulting error might have been
ignored. Problem noted by Werner Wiethege.
Note: decreasing the communication timeout in a milter
should not be done without considering the potential
problems.
smfi_setsymlist() now properly sets the list of macros for
the milter which invoked it, instead of a global
list for all milters. Problem reported by
David Shrimpton of the University of Queensland.
If Timeout.resolver.retrans is set to a value larger than 20,
then resolver.retry was temporarily set to 0 for
gethostbyaddr() lookups. Now it is set to 1 instead.
Patch from Peter.
If sendmail could not lock the statistics file due to a system
error, and sendmail later sends a DSN for a mail that
triggered such an error, then sendmail tried to access
memory that was freed before (causing a crash on some
systems). Problem reported by Ryan Stone.
Do not log negative values for size= nor pri= to avoid confusing
log parsers, instead limit the values to LONG_MAX.
Account for an API change in newer versions of Cyrus-SASL.
Patch from Hajimu UMEMOTO from FreeBSD.
Do not try to resolve link-local addresses for IPv4 (just as it
is done for IPv6). Patch from John Beck of Oracle.
Improve logging of client and server STARTTLS connection failures
that may be due to incompatible cipher lists by including
the reason for the failure in a single log line. Suggested
by James Carey of Boeing.
Portability:
Add support for Darwin 11.x and 12.x (Mac OS X 10.7 and 10.8).
Add support for SunOS 5.12 (aka Solaris 12). Patch from
John Beck of Oracle.
* The postconf(1) master.cf options parser didn't support "clusters"
of daemon command-line option letters.
* The local(8) delivery agent dereferenced a null pointer while
delivering to null command (for example, "|" in a .forward
file). Reported by Gilles Chehade.
* A memory leak fix for tls_misc.c was documented but not included.
1.7.2 31-March-2012
---------------------------------------------
- Fix and optimize searching via Nepomuk.
1.7.1 03-March-2012
---------------------------------------------
- Don't truncate SPARQL queries in virtual collections.
- Optimize change notifications for deleted collection attributes.
- Fix possible data loss during item copy/move operations.
7.98.18 hack base to catch up perl 5.16 changes, cpan modules ..
7.98.17 update modules: cpan modules, IM et.al (to be planned).
7.98.16 FML::Install is enhanced.
- handle IMAP servers which include "/" in message IDs better, so
those messages aren't always thought to be new. Thanks: Bradley
Rintoul.
- record (IMAP) mailbox retrieved from in X-getmail-retrieved-from-mailbox:
header field, and make it available as %(mailbox) substitution
in MDA_external arguments. Thanks: Les Barstow.
- add delete_bigger_than option to allow removal of large messages
after retrieval, even if not deleting messages otherwise. Thanks:
Jan Vereecke.
MIMP is a project to create a version of IMP suitable for small mobile devices
such as WAP phones or PDAs. Basic IMP functionality is implemented including
mailbox viewing and paging, viewing messages, deleting, replying, forwarding,
and composing new messages.
Changes:
version 2.12: Fri Dec 21 12:18:51 CET 2012
Fixes:
- default for Mail::Header::new(Modify) is 'false', not 'true'
rt.cpan.org#79985 [Thomas Sibley]
- Mail::Address take username with rindex(), a bit better than
index() but still poor.
rt.cpan.org#82056 [Filipe Gonçalves]
Improvements:
- check for bad folding of header lines
rt.cpan.org#79993 [Thomas Sibley]
- add a note about better to avoid Mail::Address->name(),
in response to a question by
rt.cpan.org#81459 [Moritz Lenz]
- make sure to include /usr/include/quota.h to have the libquota prototypes,
fix a segfault on amd64
- do not leak quotahandle, make sure to quota_close() it.
PKGREVISION++
ChangeLog:
1.897 2012-12-17
skip mailboxes, rather than aborting the whole parse, when
encountering non-ASCII characters (thanks, Ruslan Zakirov!)
improve the behavior of escaping in phrases (thanks, Ruslan Zakirov!)
1.896 2012-07-31
documentation improvements (thanks, Glenn Fowler!)
Changes since 2.1.12:
- Some fixes to cache file changes in v2.1.11.
- fts-solr: Overlong UTF8 sequences in mails were rejected by Solr and
caused the mails to not be indexed.
- virtual storage: Sorting mailbox by from/to/cc/bcc didn't work.
Changelog:
FIXED
Security fixes can be found here
FIXED
Pressing the 'x' button on Windows now closes only one window rather than the whole application (805185)
FIXED
An issue that caused occasional corruption in local folders after filtering is now fixed (815012)
FIXED
An issue that caused deletion of drafts saved in IMAP folders whilst in offline mode is now fixed (805626)
For security fix, see http://www.mozilla.org/en-US/thunderbird/17.0.2/releasenotes/ .
Changelog:
FIXED
Security fixes can be found here
FIXED
Pressing the 'x' button on Windows now closes only one window rather than the whole application (805185)
FIXED
An issue that caused occasional corruption in local folders after filtering is now fixed (815012)
FIXED
An issue that caused deletion of drafts saved in IMAP folders whilst in offline mode is now fixed (805626)
For security fix, see http://www.mozilla.org/en-US/thunderbird/17.0.2/releasenotes/ .
- Build fixes for Solaris 11 (using GCC 4.7)
- Install example for new config file format
- Replace hard-coded path to state directory in various files.
Changelog: from http://www.mozilla.org/en-US/thunderbird/10.0.12/releasenotes/
FIXED
Security fixes can be found here
MFSA 2013-20 Mis-issued TURKTRUST certificates
MFSA 2013-17 Use-after-free in ListenerManager
MFSA 2013-16 Use-after-free in serializeToStream
MFSA 2013-15 Privilege escalation through plugin objects
MFSA 2013-12 Buffer overflow in Javascript string concatenation
MFSA 2013-11 Address space layout leaked in XBL objects
MFSA 2013-09 Compartment mismatch with quickstubs returned values
MFSA 2013-05 Use-after-free when displaying table with many columns and column groups
MFSA 2013-04 URL spoofing in addressbar during page loads
MFSA 2013-02 Use-after-free and buffer overflow issues found using Address Sanitizer
MFSA 2013-01 Miscellaneous memory safety hazards (rv:18.0/ rv:10.0.12 / rv:17.0.2)
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling
error in dkimf_db_strerror().
LIBOPENDKIM: Ignore entries in the oversign header field name list
that are empty, and an oversign header field name list that
is present but empty.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that
were previously defined.
BUILD: Improve tests for including <strl.h>.
REPUTATION: Use lowercase for keywords in REPUTE query generation
and handling.
STATS: Clean up a dead link in opendkim-genstats.
2.7.2 2012/11/14
Log the author domain name when rejecting or discarding due to ADSP.
LIBOPENDKIM: Improve re-entrancy of dkim_eoh() when verifying.
LIBOPENDKIM: Only do a single read attempt of a private key under
GNUTLS to avoid hiding a useful error code.
STATS: Add long option support for opendkim-importstats.
STATS: Fix overly-strict domain name rules in opendkim-reportstats.
TOOLS: Fix opendkim-genkey subdomains default.
TOOLS: Fix opendkim-testmsg GNUTLS initialization.
TOOLS: Add ability to assert a reporter ID to opendkim-spam.
TOOLS: Add ability to skip a fixed number of Received: fields.
TOOLS: Print a warning when asked to generate a key smaller than
the recommended minimum.
BUILD: Fix bug #SF3585163: Use a provided libstrl if detected.
BUILD: Portability fixes for Solaris 10 from Claus Assmann and
Leena Heino.
2.7.1 2012/10/30
Fix bug #SF3581657: Fix faulty logic in LDAP open code.
Fix bug #SF3581743: Properly handle NULLs returned from OpenDBX
queries and low field counts in dkimf_db_walk().
In the _FFR_REPUTATION code, free JSON objects when done with them.
TOOLS: Fix argument parsing in new version of opendkim-genkey.
2.7.0 2012/10/24
Feature request #SF2964375: Reject configuration files that have
a SigningTable referencing a missing or malformed KeyTable
entry.
Feature request #SF3544764: Support for libar has been discontinued.
For asynchronous and/or thread-safe resolver service,
use libunbound or a suitable version of BIND.
Feature request #SF3545658: Replace "ResolvConf" with "Nameservers"
and add support for NS list overrides for versions of bind
that have res_setservers(). Also rename "UnboundConfigFile"
to "ResolverConfiguration", and make "TrustAnchorFile"
generally available.
Feature request #SF3547124: Skip reputation checks on passing
signatures whose keys had a "t=y" value.
Feature request #SF3555842: Add "ReputationTest" setting.
Feature request #SF3556439: Update opendkim-atpszone per RFC6541.
Feature request #SF3559744: Add library option DKIM_OPTS_MINKEYBITS
allowing one to specify a minimum number of key bits for
acceptable keys and signatures. This is exposed through new
configuration file option "MinimumKeyBits". The default
is 1024.
Fix bug #SF3536414: Activate _FFR_OVERSIGN, and remove
DKIM_OPTS_ALWAYSHDRS.
Fix bug #SF3536655: Rename "X-Header" to "SoftwareHeader", and rename
all header fields added that start "X-" to remove that prefix,
per RFC6648. The old name will be accepted through the end
of the 2.7.x line.
Fix bug #SF3538896: Remove antiquated CVS Id: tags, which cleans up
some (harmless) build warnings.
Fix bug #SF3548741: Add "ReputationTimeout" for use inside
_FFR_REPUTATION, rather than using the built-in default
or a hard-coded one.
Fix bug #SF3549307: Remove _FFR_REPUTATION_CACHE, as it is redundant
to caching code that's part of _FFR_REPUTATION already.
Fix bug #SF3555844: Get repute client code in sync with repute.php
(and the current REPUTE WG drafts).
Fix bounds checking in the dstring printf functions.
Fix loop structure in the C side of odkim.get_rcpt().
Change all temporary directory defaults from /var/tmp to /tmp.
Activate _FFR_LUA_GLOBALS.
Request the milter permissions required to get _FFR_REDIRECT working.
Add _FFR_REPRRD, which is a second approach to DKIM-based reputation
using round robin databases and Holt-Winters foreacasting
using rrdtool (see http://oss.oetiker.ch/rrdtool/). Still
experimental.
Patch #SF3555843: With sufficient verbosity, report the default
configuration file path. Patch from Andreas Schulze.
BUILD: Fix bug #SF3531658: Move the strlcat() and strlcpy()
implementations to their own library so that programs don't
drag in crypto and other dependencies they don't need.
Also clean up several other unnecessary dependencies imposed
by imprecise use of autoconf.
BUILD: Patch #SF3555845: Add support for older versions of libcurl.
BUILD: Install non-user things in sbin instead of bin.
LIBOPENDKIM: Feature request #SF3565006: Add dkim_add_querymethod()
and dkim_sig_seterror(), define DKIM_CBSTAT_DEFAULT, and
remove an assertion in dkim_get_key_dns(), which together
allow for applications to develop non-standard key retrieval
mechanisms.
LIBOPENDKIM: Fix bug #SF3559080: Log correct domains and selectors
with SSL errors.
LIBOPENDKIM: Add DNS functions dkim_dns_config(), dkim_dns_init(),
dkim_dns_nslist(), dkim_dns_set_init(), dkim_dns_set_close(),
dkim_dns_set_nslist(), dkim_dns_set_config(),
dkim_dns_set_trustanchor(), dkim_dns_trustanchor().
LIBOPENDKIM: Patch #SF3562496: Add DKIM_OPTS_REQUIREDHDRS to allow
alteration of the mandatory header field set.
LIBOPENDKIM: If "q=" is present and method "dns" is specified, it
must be followed by "/txt", per RFC6376.
LIBOPENDKIM: For dkim_add_xtag(), copy the provided values so the
caller doesn't have to keep them around.
LIBOPENDKIM: Allow dual signing of a single body with dkim_resign().
STATS: Fix bug #SF3555847: Add "--nocircles" to opendkim-gengraphs
to allow operation with versions of gnuplot that don't know
what "with circles" means.
STATS: Patch #SF3555841: Temporary table SQL correction.
TOOLS: Feature request #SF3553918: Add "-u" flag to opendkim-atpszone
and opendkim-genzone enabling them to produce output suitable
for use as input to nsupdate(8).
TOOLS: Feature request #SF3558818: Teach opendkim-testkey about the new
"ResolverConfiguration" setting.
TOOLS: Fix bug #SF3565013: Replace opendkim-genkey with a perl script
that knows how to do splitting of character-strings in DNS
TXT records.
TOOLS: Fix bug #SF3568846: Add "-t" to opendkim-testmsg to allow
override of the directory where temporary files go. Also,
clean up temporary files after creating them.
TOOLS: Add opendkim-rephistory.
This should fix PR pkg/47370.
Major changes since 4.2.7:
- Allow comparison of msgsize, rcptcount & spamd, against values from LDAP
- localaddr option so that Postifix user can use spf self
- Allow filtering header and body against LDAP or CURL gathered properties
- Add format string to report last matching LDAP or CURL propery
- Add a addfooter action clause in ACL, to add mail a footer
- Allow per-dacl maxpeek setting, set by maxpeer action clause in racl
- Add LDAP or CURL gathered property substitution in format strings
- Add continue type ACL
- p0f v3 support
- Fix spamd hang if message contains NULL (Enrico Scholz)
- Send the queueid to spamd (Petar Bogdanovic)
- Ratelimit on SMTP sessions and data size
- New tarpit feature (Kouhei Sutou)
- Make SpamAssassin headers Sendmail-like (Petar Bogdanovic)
- Merge autowhite and greylist databases (Rudy Eschauzier)
- Make LDAP querries timeout configurable
- Make MX sync timeout peer-configurable (Attila Bruncsak)
This update is largely based on a patch submitted by Richard Palo
in PR pkg/47369.
repository. Approved by wiz@.
* Now work well with PHP 5.4 and later.
Version 1.4.23 - SVN
--------------------
- Added capability to issue SEARCH commands in literal format (so that
non-ASCII search terms are handled RFC-correctly).
- Fixed hook name clash: new "smtp_auth" hook added in version 1.4.22
has been renamed to "smtp_authenticate"
- Added SASL PLAIN mechanism for IMAP logins; backported from version
1.5.2.
- Prevent syslog warning in call_user_func_array() call when no
arguments given. Patch from Jean-Philippe Guerard (#3309935).
- Changed the read_body_menu_top hook from concat_hook_function to
do_hook_function (plugin authors please note)
- Always ensure that the Reply-To header is a full email address in
outgoing messages
- Fixed issue with Noselect mailboxes being clickable in folder list
- Made performance improvements in mailbox listing
- Attachment filename extensions changed from ".msg" to ".eml"
- Unified address book searches somewhat: file-backed address books now
search in each field individually; database-backed address books now
search in fields other than first/last name (nickname, email); LDAP-
backed address books now search in common name fields as well as by
email address (cn, sn, givenname, mail)
- You may now enable LDAP-backed address books to be listed (using
the "List all" button on the address search screen accessed via
the "Addresses" button on the compose screen) by adding
"$ldap_abook_allow_listing = TRUE;" (without quotes) to
config/config_local.php (previously, this required editing of a
file).
- Added ability to control browser rendering mode (quirks versus
standards) - see the $browser_rendering_mode setting in
config/config.php or the "4. General Options ==> 19. Browser
rendering mode" setting in the configuration tool (#3240356).
- Added "search_index_before" hook (analog of the "mailbox_index_before"
hook)
- Made performance improvements in security token handling
- Improvements for compatibility with PHP 5.4.
- Added option that allows users to have replies to their own
messages sent to the recipient of the previous message (#3520988).
Fixes:
2012-10-24
* Update configure.ac to avoid autoconf 2.68 warnings, by
(a) quoting the first AC_RUN_IFELSE argument, an
AC_LANG_PROGRAM(), with [ ], and
(b) providing an explicit "true" assumption for Berkeley DB
capabilities to avoid cross-compilation warnings.
2012-10-22
* Security bugfix for CVE-2012-5468 (bogofilter-SA-2012-01):
Fix a heap corruption in base64 decoder on invalid input.
Analysis and patch by Julius Plenz <plenz@cis.fu-berlin.de>.
2011-01-02
* Added bogofilter-faq-bg.html, a Bulgarian translation of the FAQ.
(thanks to Albert Ward)
2010-10-29
* Mark "Berkeley DB 5.1.19: (August 27, 2010)" supported.