This is a bug-fix release fixing a problem resetting access times that snuck
in starting with 1.11.0. This only affected relative-path mailboxes, but
caused Mutt to "forget" new mail in mbox files.
This release fixes a regression from the 1.14.3 release. Encryption settings
are no longer checked when using $tunnel to connect to a preauthenticated IMAP
server.
Remove some patches that would get voting rights soon.
Remove support for NetBSD 1.5.
pkglint cleanup.
XXX: someone should send the remaining patches upstream.
Mutt 1.14.4 was released on June 18, 2020. This is an important
bug-fix release. It fixes a possible machine-in-the-middle response
injection attack when using STARTTLS with IMAP, POP3, and SMTP
(CVE-2020-14954).
Mutt 1.14.3 was released on June 14, 2020. This is an important
bug-fix release. It fixes a possible IMAP fcc/postpone
machine-in-the-middle attack (CVE-2020-14093). It also fixes some
GnuTLS certificate prompt issues.
Mutt 1.14.2 was released on May 25, 2020. This is a bug-fix release,
fixing a few prompt buffer-size issues and adding a potential DoS
mitigation.
Mutt 1.14.1 was released on May 16, 2020. This is a bug-fix release,
fixing a documentation build issue and a few other small bugs.
Mutt 1.14.0 was released on May 2, 2020. This release has new
features and bug fixes. See the UPDATING file, or for more details
see the release notes page.
This release fixes a potential memory corruption issue when sync'ing imap
mailboxes. It also improves the speed of opening mailboxes with large threads
(when sorting by thread). Lastly, it changes the default of $ssl_force_tls
back to unset.
1.13.4 (2020-02-15):
! Bug fix release.
! $ssl_force_tls reverted to default unset. Defaulting this set was
overly optimistic, and caused breakage.
Changes since version 1.13.0:
! Bug fix release.
+ $sidebar_relative_shortpath_indent, default unset, enables the
indentation and shortpath behavior introduced in 1.13.0.
+ $sidebar_use_mailbox_shortcuts, default unset, displays standard
mailbox shortcuts, '~' and '=' in the sidebar. When unset, the
sidebar will remove a $folder prefix but won't display mailbox
shortcuts.
Changes since version 1.12.2:
! <half-up> and <half-down> in the pager are now symmetric.
! $ssl_force_tls is now set by default.
! Configure option --with-regex is renamed to --with-bundled-regex.
Most modern OS should be fine using their own regex library. The
rename is to clarify the intention of the option.
! Configure option --disable-doc now only disables the manual generation.
Other parts of the doc directory (man pages, Muttrc file) are generated.
! $user_agent is now unset by default.
! unattachments now has a '*' parameter to remove all attachment counting.
+ Autocrypt support. Enabled via configure option --enable-autocrypt.
Please see the manual for details on how to enable and use this properly.
+ Byte size displays can be customized via new variables $size_show_bytes,
$size_show_mb, $size_show_fractions, $size_units_on_left.
+ $ssl_use_tlsv1_3, default set, allows TLS1.3 connections if supported
by the server.
! format=flowed space stuffing works again, and is performed after every
edit, not just the first time.
+ $browser_sticky_cursor, default set, attempts to keep the cursor on the
same mailbox when performing operations in the browser.
! <display-filename> in the browser menu shows the full path for local and
IMAP mailboxes.
! $sidebar_folder_indent and $sidebar_short_path are now based on previous
entries in the sidebar, allowing them to work on mailboxes outside $folder.
! Sidebar entries are now prefixed with mailbox shortcuts '~' and '='. This
uses the same code as other parts of mutt, for more consistent display.
+ <browse-mailboxes> allows direct access to the mailboxes list from the
index and pager, without having to use a macro. This improves
$browser_sticky_cursor initial selection of the current mailbox.
! <pipe-message> with $pipe_decode set will update MIME headers to decoded
text/plain values.
+ $send_multipart_alternative and $send_multipart_alternative_filter allow
the generation of a multipart/alternative when composing a message. See
their documentation in the manual for more details. Also see
contrib/markdown2html for a sample filter.
+ In the compose menu <view-alt>, <view-alt-text>, <view-alt-mailcap> allow
previewing the output of the $send_multipart_alternative_filter.
! $write_bcc now defaults unset. It no longer affects the Fcc copy, which
will always include the Bcc header.
+ When $count_alternatives is set, Mutt will recurse inside
multipart/alternatives while performing attachment searching and counting.
This affects %X in the index and ~X pattern matching.
+ $fcc_before_send, when set, causes Fcc to occur before sending instead of
afterwards. When set, the message is saved as-sent; please see the
documentation for details.
Changes since version 1.11.4:
! $ssl_use_tlsv1 and $ssl_use_tlsv1_1 now default to unset.
+ $auto_subscribe, when set, automatically adds an email with the List-Post
header to the subscribe list.
! Fcc now occurs after sending a message. If the fcc fails, mutt will prompt
to try again, or to try another mailbox.
+ Basic protected header ("memory hole") support added for the Subject header.
See the config vars: $crypt_protected_headers_read,
$crypt_protected_headers_save, $crypt_protected_headers_subject,
and $crypt_protected_headers_write.
! Color names can be prefixed with "light" in addition to "bright". "bright"
colors are bold face, while "light" are non-bold.
! Color commands can now include an attribute (e.g. bold, underline).
! $pgp_use_gpg_agent defaults set.
+ <descend-directory> in the browser menu allows entering nested maildir
directories.
+ <group-chat-reply> replies to all, but preserves To recipients in the reply.
+ $include_encrypted, default unset, prevents separately encrypted contents
from being included in a reply. This helps to prevent a decryption oracle
attack.
! With gpgme >= 1.11, recipient keys with a trailing '!' now force subkey use,
as with classic gpg.
! In send mode, %{charset} mailcap expansion uses the current charset of the
file.
+ $imap_fetch_chunk_size allows fetching new headers in groups of this size.
This might help with timeouts during opening of huge mailboxes.
If you have huge mailboxes, you should also try $imap_qresync.
! <toggle-write> can be invoked from the pager too.
+ The $forward_attachments quadoption allows including attachments in
inline-forwards (i.e. $mime_forward unset, $forward_decode set.)
In my environment, the build was trying and failing to download the
docbook xhtml files and then generating an empty manual.txt when
lynx was not found.
Bump PKGREVISION to be on the safe side.
Changes since version 1.10.1:
+ inotify is used for local mailbox monitoring on Linux. Configuration flag
--disable-filemonitor turns this off.
+ OAUTHBEARER support for IMAP, SMTP and POP via
$imap_oauth_refresh_command, $smtp_oauth_refresh_command, and
$pop_oauth_refresh_command.
! $pgp_timeout and $smime_timeout support 32-bit numbers.
+ <check-stats> manually updates mailbox statistics, the same way
$mail_check_stats does when set.
! Thread limited views, e.g. ~(pattern), now show new mail as it arrives.
! Command line argument -z and -Z options also work for IMAP mailboxes.
+ $imap_condstore and $imap_qresync enable IMAP CONDSTORE and QRESYNC
support, respectively. QRESYNC should provide much faster mailbox opening.
! $abort_noattach skips quoted lines (as defined by $quote_regexp and
$smileys).
! Initial IMAP header downloading can be aborted with ctrl-c.
+ <compose-to-sender> composes a message to the sender of the selected
message, in the index or attachment menu.
! Address book queries ($query_format) now support multibyte characters.
+ Finnish translation.
! pgpring has been renamed to mutt_pgpring.
! Certificate prompts show sha-256 instead of md5 fingerprints.
! Non-threaded $sort_aux "reverse-" settings now work properly.
+ The manual can be generated and installed in GNU Info format.
+ index-format-hook and the new %@name@ expando for $index_format enable
dynamic index formats using pattern matching against the current message.
This can be used, for example, to format dates based on the age of
the message.
! Relative date matching allows hour, minute, and second units: HMS.
This is a bug fix release, and includes a few important security fixes.
It is strongly recommended that IMAP and POP users upgrade as soon as
possible.
This is a feature release. Changes since version 1.9.5:
! $reply_self is now respected for group-reply, even with $metoo unset.
! Enabled $imap_poll_timeout when $imap_idle is set.
! Added %R (number of read messages) expando for $status_format.
+ When $change_folder_next is set, the <change-folder> function
mailbox suggestion will start at the next folder in your
"mailboxes" list, instead of starting at the first folder in the
list.
+ $new_mail_command specifies a command to run after a new message is
received.
+ $pgp_default_key specifies the default key-pair to use for PGP
operations. It will be used for both encryption and signing
(unless $pgp_sign_as is set). See contrib/gpg.rc.
! $smime_default_key now specifies the default key-pair to use for
both encryption and signing S/MIME operations. See
contrib/smime.rc.
+ $smime_sign_as can be used to specify a sign-only key-pair for
S/MIME operations.
- $pgp_self_encrypt_as is now deprecated, and is an alias for
$pgp_default_key. $smime_self_encrypt_as is also deprecated, and
is an alias for $smime_default_key.
! $pgp_self_encrypt and $smime_self_encrypt now default to set.
This makes setting $pgp_default_key or $smime_default_key all that
is required to enable self-encryption (for both classic and GPGME
mode).
+ The <history-search> function (default: ^R) will search history based
on the text currently typed in. That is, type the search string first,
then hit ^R.
+ The $abort_noattach quadoption controls whether to abort sending a
message that matches $abort_noattach_regexp and has no attachments.
+ Mutt can now be configured --with-idn2. This requires the libidn1
compatibility layer present in libidn2 v2.0.0 or greater.
+ Unsetting $browser_abbreviate_mailboxes turns off '=' and '~'
shortcuts for mailbox names in the browser mailbox list.
! $sort_browser now has 'count' and 'unread' options.
+ <error-history> will display the last $error_history count of
error/informational messages generated.
+ The ~M pattern matches content-type headers. Note that this
pattern may be slow because it reads each message in.
+ The "echo" command can be used to display a message, for instance
when running a macro or sourcing a file.
This is a bug fix release. Fixes include:
* GPGME S/MIME non-detached signature handling.
* A compilation issue with ncurses-6.1 when tinfow is split out.
Hopefully the fix doesn't impact anyone: please let me know of any
issues.
* Regular expression crashes and weird behavior problems on MacOS (and
possibly other BSDs). This was most noticeable with the recent Xcode
9.3 release, but the issue has existed for a while.
* GSSAPI authentication issues, which may have affected Exchange users.
We've changed behavior to match the RFC. If you are negatively
impacted by this, please let me know.
Changes since version 1.9.0:
This is a bug fix release, coming shortly after the last release due to
a possible segfault fix with IMAP. There are also fixes for the trash
folder, imap_poll_timeout, and GMail flags notifications.
+ $ssl_verify_partial_chains permits verifying partial certificate chains.
This allows the storage of only intermediate/host certificates in the
$certificate_file. (OpenSSL 1.0.2b and newer only)
! SNI support added for OpenSSL and GnuTLS.
+ Choice and confirmation prompts can now wrap across multiple lines.
+ Window resizes are handled while in the line editor.
+ "color compose" can color the compose menu header fields and the
security status. See "Using Color and Mono Video Attributes" in the
manual for more details.
+ Setting $header_color_partial allows partial coloring of headers in the
pager. This can be used to color just the header labels, or strings
inside the headers. hdrdefault controls the color of the unmatched part.
+ When $history_remove_dups is set, duplicates in the history ring will
be scanned and removed each time a new entry is added.
! IMAP header downloading was improved to support out-of-order and
missing MSN entries.
! $message_cache_clean should be faster for large mailboxes.
+ Self-encryption can be enabled using the $pgp_self_encrypt,
$pgp_self_encrypt_as, $smime_self_encrypt, and $smime_self_encrypt_as
options.
! $postpone_encrypt now will use the $pgp_self_encrypt_as or
$smime_self_encrypt_as option values first. $postpone_encrypt_as will
be checked second, but should be considered deprecated.
+ $forward_attribution_intro and $forward_attribution_trailer can be used
to customize the message preceding and following a forwarded message.
+ The ~<() and ~>() pattern operators match messages whose immediate parent,
or immediate children respectively, match the subpattern inside ().
They are more specific versions of the ~() pattern operator.
+ $imap_poll_timeout allow IMAP mailbox polling to time out. This defaults
to 15 seconds.
+ The attachment menu now supports nested encryption. This allows
attachments in nested encrypted messages to be saved or operated on.
+ $mime_type_query_command specifies a command to run to determine
a new attachment's mime type. When $mime_type_query_first is set,
this command will be run before looking at the mime.types file.
