Commit graph

7359 commits

Author SHA1 Message Date
tron
453358c813 Update "p5-MIME-tools" package to version 5.502. Changes since version 5.428:
- Fix parsing bug: https://rt.cpan.org/Ticket/Display.html?id=66025
- Fix typo: https://rt.cpan.org/Ticket/Display.html?id=65387
- Fix unit tests on Perl 5.8.x: https://rt.cpan.org/Ticket/Display.html?id=66188
- Fix unit test failure on Win32:  (https://rt.cpan.org/Ticket/Display.html?id=66286)
- Add build_requires 'Test::Deep'; to Makefile (rt.cpan.org #64659)
- Fix spelling errors (rt.cpan.org #64610)
- Fix double-decoding bug when decoding RFC-2231-encoded parameters
  (rt.cpan.org #65162)
- Fix inappropriate inclusion of CR characters in parsed headers
  (rt.cpan.org #65681)
- Document that MIME::WordDecoder is mostly deprecated.
- Document that MIME::Head->get(...) can include a trailing newline.
- Increase buffer size from 2kB to 8kB in MIME::Entity and MIME::Body
  (part of rt.cpan.org #65162)
- (cleanup) IO-Stringy (specifically, IO::ScalarArray, IO::Lines, and
  IO::InnerFile) is no longer used
- (ticket 22684) Fix deadlock in filter() when invoking external
  programs such as gzip. (Alexey Tourbin <at -at- altlinux.ru>)
- Remove auto_install from Makefile.PL
- (ticket 60931) If preamble is empty, make sure it's still empty after roundtripping through MIME::Entity
- (ticket 63739) Properly decude RFC2231 encodings in attachment filenames
2011-08-07 08:09:01 +00:00
tron
f78aa8d1b9 Update "p5-MailTools" package to version 2.08. Changes since version 2.07:
- respect errors on closing an Mail::Mailer::smtp/::smtps connection.
  [Tristam Fenton-May]
- Mail::Internet should accept Net::SMTP::SSL as well.
  rt.cpan.org#68590 [Jonathan Kamens]
Improvements:
- document that Mail::Mailer::smtps needs Authen::SASL
  [Marcin WMP Janowski]
2011-08-07 08:04:47 +00:00
tron
5701d37764 Update "spamassassin" package to version 3.3.2. Changes since version 3.3.1:
This is a minor release, primarily to support perl-5.12 and later.
Additionally several other minor bugs are fixed.
2011-08-07 07:47:20 +00:00
is
df6dd8461a Mailhops bei Marius Gedminas/Roland Rosenfeld - a script to summarize the
path and delays an e-mail message encounted.
2011-08-05 13:20:52 +00:00
shattered
7aec0e25fe Remove duplicate patch. oops. 2011-08-02 06:16:09 +00:00
shattered
4f8604d6ea Unbreak build on netbsd-4, required for PR/42706 2011-07-30 11:16:06 +00:00
taca
94b2d747c8 Update postfix package to 2.8.4.
Postfix stable release 2.8.4 is available. This contains fixes and
workarounds that were already included with the Postfix 2.9
experimental release. Where applicable these fixes will also be
made available for the legacy releases Postfix 2.5..2.7.

    * Performance: a high load of DSN success notification requests
      could slow down the queue manager. Solution: make the trace
      client asynchronous, just like the bounce and defer clients.

    * The local(8) delivery agent ignored table lookup errors in
      mailbox_command_maps, mailbox_transport_maps, fallback_transport_maps
      and (while bouncing mail to alias) alias owner lookup.

    * Workaround: dbl.spamhaus.org rejects lookups with "No IP
      queries" even if the name has an alphanumerical prefix. We
      play safe, and skip both RHSBL and RHSWL queries for names
      ending in a numerical suffix.

    * The "sendmail -t" command reported "protocol error" instead
      of "file too large", "no space left on device" etc.

    * The Postfix Milter client reported a temporary error instead
      of "file too large" in three cases.

    * Linux kernel version 3 support. Linus Torvalds has reset the
      counters for reasons not related to changes in code.

You can find the updated Postfix source code at the mirrors listed
at http://www.postfix.org/.
2011-07-27 06:04:54 +00:00
pettai
79a1b777f8 Here are the most important changes in MIMEDefang 2.72:
* In mimedefang.c, truncate overlong responses from the multiplexor. Also sanitize replies so "\r" doesn't get fed to smfi_setmlreply.
* If a slave process replies with a very long reply, have the multiplexor consume (and discard) the excess input so the multiplexor-to-slave protocol does not become de-synchronized.
* When mimedefang becomes a daemon, have it wait for a "go/no-go" message from the child before exiting. This should eliminate race conditions whereby the MTA starts before the milter socket is present.
* Avoid run-time errors from Unix::Syslog on some platforms.
2011-07-27 04:23:53 +00:00
tnn
f701401385 Update to thunderbird-3.1.11.
MFSA 2011-24 Cookie isolation error
MFSA 2011-23 Multiple dangling pointer vulnerabilities
MFSA 2011-22 Integer overflow and arbitrary code execution in
             Array.reduceRight()
MFSA 2011-21 Memory corruption due to multipart/x-mixed-replace images
MFSA 2011-20 Use-after-free vulnerability when viewing XUL document with
             script disabled
MFSA 2011-19 Miscellaneous memory safety hazards (rv:3.0/1.9.2.18)
2011-07-22 07:31:07 +00:00
joerg
79a36ce1cc Make sure localtime_r is present when building with clang. 2011-07-21 17:05:35 +00:00
obache
8692ff62cb recursive bump from gnome-vfs drop crypto dependency. 2011-07-21 13:05:46 +00:00
taca
ea52274a85 Update squirrelmail package to 1.4.22.
Version 1.4.22 - 12 July 2011
-----------------------------
  - Backported default timezone fix from version 1.5.2; helps mitigate
    timezone errors in environments where a default has not been set
    by the administrator.
  - Fixed system lock-ups caused by a combination of certain rare,
    malformed message headers and buggy versions of PHP mbstring
    (#3053349).
  - Now allow multiple plugins to handle (add links for) a single
    attachment MIME type.
  - Now allow administrators to disable all plugins or enable just
    a select few plugins (overriding the active plugins in the normal
    configuration) by setting $temporary_plugins as an empty array
    (all disabled) or an array with one or more plugin directory names
    in config_local.php.
  - Backport fix for call_user_func_array not supporting NULL as empty
    array in PHP 5.3.3
  - Fixed sqauth_read_password() for plugins on the login_verified hook.
  - Added SMTP SASL PLAIN authentication option to configuration tool
    (core support for such is not new).
  - Gmail doens't support standard search commands; removed sort buttons.
  - Forced addition of a file suffix to attachments that lack a filename
    (helps forwarded messages avoid spam filters) (thanks to Petr
    Kletecka) (#3139004).
  - Fixed missing security token in listcommands plugin.
  - Added smtp_auth hook (thanks to Emmanuel Dreyfus).
  - Made speed enhancements to threaded message display (thanks to Siim
    Poder) (#3288123).
  - Allow administrators to configure subfolders of user INBOXes to be
    treated as special folders by adding $subfolders_of_inbox_are_special
    to config_local.php.
  - Fixed incorrect display of INBOX subfolders under some configurations.
    IMPORTANT: You may need to update your configuration so that
    $default_sub_of_inbox is TRUE if it was FALSE (e.g., Courier IMAP users)
    and after updating to this version, your special folders are no longer
    listed at the top of your folder list.  Also, if this change prevents
    users from logging in with an error such as "ERROR: Could not complete
    request.  Query: CREATE "Trash" Reason Given: Invalid mailbox name.",
    you will need to correct the user preference values for the problem
    folders.  You can do so with commands such as the following for file-
    based preferences (adjust the data directory location as needed):
        find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Trash/trash_folder=INBOX.Trash/g' {} \;
        find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Drafts/trash_folder=INBOX.Drafts/g' {} \;
        find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Sent/trash_folder=INBOX.Sent/g' {} \;
    Or, for database-based preferences:
        UPDATE userprefs SET prefval = 'INBOX.Trash' WHERE prefkey = 'trash_folder' AND prefval = 'Trash';
        UPDATE userprefs SET prefval = 'INBOX.Drafts' WHERE prefkey = 'draft_folder' AND prefval = 'Drafts';
        UPDATE userprefs SET prefval = 'INBOX.Sent' WHERE prefkey = 'sent_folder' AND prefval = 'Sent';
    MAKE SURE to back up your user preferences first!
  - Optimized message highlighting rules; faster message list display
    and faster highlight rules management (thanks to C. Bensend for
    extensive effort helping diagnose)
  - New Mail plugin no longer removes normal organization title when
    putting the number of new messages in the browser title
  - Added clickjacking protection (thanks to Asbjorn Thorsen and Geir
    Hansen for bringing this to our attention). [CVE-2010-4554]
  - Fixed XSS holes in generic options inputs, XSS hole in the SquirrelSpell
    plugin, XSS hole in the Index Order page, and added anti-CSRF protection
    to the empty trash feature and the Index Order page (thanks to Nicholas
    Carlini for finding all these issues). [CVE-2010-4555]
  - Fixed XSS problem with unsanitized style tags in messages. [CVE-2011-2023]
2011-07-13 12:22:43 +00:00
taca
6e3ce39cc9 take MAINTAINER. 2011-07-13 01:30:34 +00:00
ryoon
52426d7a5f * Support stunnel-4.39, version detection is changed.
* bump PKGREVISION.
2011-07-11 14:54:38 +00:00
obache
9b7f7b33ae Update cyrus-imapd24 to 2.4.10.
While here,
* Exactly enable/disable PCRE support with package option, enabled by default.
* Add workaround patches for PR#44275, sizeof(time_t) > sizeof(unsigned long).

Changes to the Cyrus IMAP Server since 2.4.9

      * fixed handling of unparsable emails during append (which would
        cause invalid cyrus.index records otherwise)
      * quota: fix a pile of bugs. #1801, virtdomain support; #2728, slow
        user delete; #3178, "file name too long" with big mailbox names;
        #3179, quota -f doubles usage.
      * Bug #3043 - parse multiple groups in headers correctly
      * Bug #3158 - lmtp backend connection timeout
      * Bug #3223 - limit MIME parsing depth to avoid stack overflows
      * Bug #3273 - add SORT=DISPLAY support (but note: still questions
        about correctness of unicode sorting)
      * Bug #3504 - convert all sieve scripts to \r\n line endings on
        upload
      * Bug #3402 - options to munge 8bit characters in headers during lmtp
        delivery to avoid backscatter
      * sync_client: fix broken keepalive TCP options (I doubt anyone ever
        tried to use it)
      * Bug #3482 - add "-o" option to ipurge to only purge messages with
        \Deleted flag set
2011-07-06 09:45:45 +00:00
is
74cdfcc78d Don't compile those functions when using slang - they're not needed
and using an in this case undefined helper function.
2011-07-06 06:24:37 +00:00
obache
ab64949dd4 LICENSE=gnu-gpl-v2 2011-07-03 11:47:50 +00:00
dholland
1851f4ed19 USE_TOOLS, not USE_TOLLS. :-/ 2011-07-03 06:59:56 +00:00
markd
22e8747a10 /usr/bin/env cleanup 2011-07-03 05:53:08 +00:00
obache
118583ae74 Update HOMEPAGE. 2011-06-30 13:20:46 +00:00
schnoebe
84bb8a032a Update to 1.3.4;
Add PKG_DESTDIR_SUPPORT;
Add LICENSE

`$Cambridge: hermes/src/prayer/docs/DONE,v 1.66 2011/06/27 13:39:56 dpc22 Exp $

27/06/2010
==========

Release: Prayer 1.3.4

22/06/2011
==========

draft.c fixes:
 Fold long lines of addresses before the entry which reaches 78 characters
 when possible, rather than after the first entry which crosses that
 boundary. Long standing bug bear of mine but several support functions
 needed to be rewritten to use scratch string in place of output buffer.

 Long subject lines which are not RFC1522 encoded need to be folded.
 separately. Reported by Andrey N. Oktyabrski <ano@bestmx.ru>.

 RFC1522 is not allowed to fold lines in the middle of a UTF-8 multibyte
 character. Reported by Andrey N. Oktyabrski <ano@bestmx.ru>.

Tidy library:
  Add support for tidyp fork of (apparently abandoned) tidy library.

Fix cross site scripting problem:
  MSIE and Chrome think that <!---> is a complete comment. Allows people to
  hide scripts inside <!---><script>...<!--->. Strip all comments (which is
  something that the old sanitiser had been doing already)

Sieve blocks should check "From: " address in body as well as
envelope sender address. Check "Sender: " as well for completeness.

Linux needs IPPROTO_IPV6 to bind to '0.0.0.0' and '::'

01/11/2010
==========

Mike Brudenell <mike.brudenell@york.ac.uk> reported problem with RFC
2183/RFC 2231 quoting with vey long filenames, or filenames with strange
characters from ASCII range.

20/07/2010
==========

Release: Prayer 1.3.3

08/07/2010
==========

Better handling of complex multipart messages:

 Rather than just displaying the first text/plain or text/html that we can
 find in the top, (leaving people to access sections for the other parts),
 display the entire tree: multipart/alternative are handled as before, but
 with other multipart messages, recurse into the subtrees and repeat. Given:

   1   (Nested multipart)
   1.1 text/html
   1.2 text/plain
   2   text/plain

 we display sections 1.1 and 2. Previously we would display section 2,
 which is a bit of a disaster if section (1) was the original message and
 a listserver has helpfully tagged on a message footer as a separate bodypart

Combine os_*.c back into a single file (which is where I started off
many years back). Eliminates lots of repeated code.

07/07/2010
==========

Bugs
====

os_bind_inet_socket(unsigned long port, char *interface)

  If interface resolves to multiple IP addresses then only binds to the
  first. Should really walk along ai->ai_next and bind to each IP address
  in turn. Unfortuanetly this means that os_bind_inet_socket() needs to
  return an array of sockfds rather than a single int. Parent routines
  probably aren't going to play ball either.

  Most likely cause will be a hostname which generates both IPv4 and IPv6
  addresses. Unfortanately it is a probably that we are going to have
  to solve eventually.


05/07/2010
==========

Fix XSS problems reported by:
  Jacob H. Hilton <jhh40@cam.ac.uk>
  Dr Andrew C Aitchison <A.C.Aitchison@dpmms.cam.ac.uk>

  Rather than trying to spot dangerous tags by simple substring matching in C,
  I now feed the html through Tidy library (http://tidy.sourceforge.net/),
  and then prune unwanted nodes from the parse tree before setting it to
  the pretty printer. The only problem is that the Tidy library doesn't
  provide any public API for manipulating the parse tree (although it does
  provide a public API for walking the tree!?), so I had to dig around to
  find the private functions required to remove and manipulate nodes.

  Javascript embedded into CSS is also a problem: I need to strip off CSS
  character entities before looking for dangerous expressions. The final
  part is still a simple string match: I hope that I don't end up having to
  generate parse trees for CSS as well as the HTML.

  Now passes full test suite at:

  https://secure.grepular.com/email_privacy_tester/

Better vacation screen
  Subject line
  Phrasing

Coping with multiple logins as single user from single browser:
  SessionID stored in HTTP Cookie: second login blats first
    Can store SessionID in URL (Prayer does this if no cookies available)
    Not secure: leaks in HTTP "Referrer" header with links from HTML email.
  Solution: Use HTTP Cookie keyed by PID of login session.

Smaller cleanups:
  Improve gap between words in spell check (Cambridge house style)
  Remove extra blank lines after postpone, restore cycle.
2011-06-30 01:17:37 +00:00
gls
73cd5da8fe Add two patches from drochner@ to make claws-mail build again against newer
gnutls.
PKGREVISION++
2011-06-27 19:46:50 +00:00
obache
8d71ff1ff0 Update cyrus-imapd24 to 2.4.9.
while here, expunge old sites from MASTER_SITES, and add the http site in
release announcement.

Changes to the Cyrus IMAP Server since 2.4.8

      * fixed crashes in seen handling
      * Bug #3453 - fixed LSUB replication
      * Bug #3442 - allow disabling PCRE if it's buggy at your site
      * Bug #3443 - LSUB response fixes
      * Bug #3448 - XFER error handling (murder)
      * Bug #3437 - fixed regression: quotaroot wasn't being updated on
        rename
      * Bug #3456 - fixed crash on rename user.foo user.foo without
        partition change
      * config update: database paths for most databases are now
        configurable in imapd.conf
      * Bug #3303 - fixed index lock breaking on XFER (thanks Julien
        Coloos)
      * Bug #3457 - fixed ESEARCH parsing (was breaking iPhones)
      * Bug #3188 - fixed XFER with unlimited quota (thanks again Julien
        Coloos)
      * Misc other quota fixes (there are still known bugs with the quota
        system)
      * Bug #3169 - fixed GETQUOTAROOT for domain quotaroots
      * Bug #3465 - fixed compilation with Perl 5.14 (thanks
        hsk@imb-jena.de, and also thanks to Ondrej Sury who reported it
        separately)
      * Bug #3464 - fix for sendmail exec failure. This was a nasty one,
2011-06-22 01:05:36 +00:00
taca
4a6bd1aff6 Update sylpheed package to 3.1.1.
Patch was provided by PR pkg/45088 from ISIHARA Takanori.


Changes of Sylpheed

* 3.1.1 (stable)

    * The column width of the address book will be saved now.
    * The keyboard shortcut of 'File/Send' menu of compose window was changed
      to prevent accidental sending.
    * The bug that caused occasional crash when summary was updated while
      receiving messages was fixed.
    * The compilation problem on some environment was fixed.
    * Some locale problems on Mac OS X was fixed.
    * The compilation error on newer gcc was fixed.
    * Finnish translation was added.
2011-06-21 03:21:46 +00:00
bouyer
2cac68122b Add destdir support 2011-06-19 13:50:57 +00:00
obache
e923360656 + quickml 2011-06-19 10:09:18 +00:00
obache
a736d8b744 Import quickml-0.7 as mail/quickml.
Based on PR#44939 by Susumu Miwa.
Modified by Makoto Fujiwawa and me in pkgsrc-wip.

Quickml server provides very-easy-to-use mailing list service.
It was too open in this age, some limitation is provided in
this package. The original code is written by Satoru Takabayashi.
2011-06-19 10:01:53 +00:00
taca
6143e58b23 Update ruby-rails3 related package to 3.0.9.
These are update of the version only.
2011-06-17 13:50:48 +00:00
pettai
e712827934 Fixed pidfile path 2011-06-17 13:49:35 +00:00
pettai
79babc2764 Made some corrections to the rc script 2011-06-17 13:42:04 +00:00
obache
98a112cce3 Drop PYTHON_VERSION_ACCEPTED restriction, because it was just not accept 23. 2011-06-14 11:33:27 +00:00
tron
a128f72bfc Enable "pam" option in "dovecot" packages by default as most platforms
supported by "pkgsrc" provide PAM support out of the box.

Change approved by Geert Hendrickx.
2011-06-14 09:37:17 +00:00
obache
4930bbb7d6 Update milter-manager to 1.8.0.
== [release-1-8-0] 1.8.0: 2011-06-10

The first release of stable 1.8.x series.

=== All

==== Improvements

  * Removed unused variables.

=== Package

==== Improvements

  * [debian] Removed Debian GNU/Linux lenny support.
  * [debian] Added Debian GNU/Linux wheezy support.
  * [ubuntu] Removed Ubuntu Hardy Heron support.
  * [ubuntu] Removed Ubuntu Maverick Meerkat support.
  * [ubuntu] Added Ubuntu Natty Narwhal support.
  * [redhat] Specified PID file in init file explicitly.
  * [freebsd] Supported /etc/rc.conf.local.
    [Patch by moto kawasaki]

==== Fixes

  * [debian] Added missing milter.rb.
    [Reported by Mitsuru Ogino]

=== milter manager

==== Improvements

  * [trust applicable condition] Normalized domain name.
  * Added ((<trust.clear|configuration.rd#trust.clear>))
    configuration item.
  * Added
    ((<trust.load_envelope_from_domains|configuration.rd#trust.load_envelope_from_domains>))
    configuration item.
  * [trust applicable condition] Added ezweb.ne.jp and
    docomo.ne.jp to built-in trusted domain list.
  * Used fallback status on negotiate.
  * Added
    ((<manager.chunk_size|configuration.rd.ja#manager.chunk_size>))
    configuration item.

==== Fixes

  * Fixed a bug that child milter process launcher isn't
    exited.
    [Reported by OBATA Akio]
  * Fixed a bug that child milters that return reject,
    temporary failure or discard aren't used in the same
    session.

=== milter-core

==== Improvements

  * Added trace log level that is more verbose than debug
    log level.
  * Supported +/- log level prefix to add/remove log level
    from the current log levels in MILTER_LOG_LEVEL
    environment environment.

==== Fixes

  * Fixed a read block bug when readable data is available.

=== Ruby milter

==== Improvements

  * [configuration] Used 'accept' as default value for
    fallback status.

=== milter-performance-check

==== Improvements

  * Supported CentOS 5.

=== Document

==== Fixes

  * Used Milter::VERSION instead of Milter::TOOLKIT_VERSION
    for confirming Ruby milter's version.
    [Reported by Mitsuru Ogino]
2011-06-12 11:08:37 +00:00
dholland
6fad7b4c8a Update xbiff to 1.0.3. Changes seem to be mostly code cleanup and
autoconf churn.
2011-06-12 00:31:02 +00:00
jnemeth
e5bb853303 Update to 8.14.5, a general bugfix release:
8.14.5/8.14.5	2011/05/17
	Do not cache SMTP extensions across connections as the cache
		is based on hostname which may not be a unique identifier
		for a server, i.e., different machines may have the
		same hostname but provide different SMTP extensions.
		Problem noted by Jim Hermann.
	Avoid an out-of-bounds access in case a resolver reply for a DNS
		map lookup returns a size larger than 1K.  Based on a
		patch from Dr. Werner Fink of SuSE.
	If a job is aborted using the interrupt signal (e.g., control-C from
		the keyboard), perform minimal cleanup to avoid invoking
		functions that are not signal-safe. Note: in previous
		versions the mail might have been queued up already
		and would be delivered subsequently, now an interrupt
		will always remove the queue files and thus prevent
		delivery.
	Per RFC 6176, when operating as a TLS client, do not offer SSLv2.
	Since TLS session resumption is never used as a client, disable
		use of RFC 4507-style session tickets.
	Work around gcc4 versions which reverse 25 years of history and
		no longer align char buffers on the stack, breaking calls
		to resolver functions on strict alignment platforms.
		Found by Stuart Henderson of OpenBSD.
	Read at most two AUTH lines from a server greeting (up to two
		lines are read because servers may use "AUTH mechs" and
		"AUTH=mechs"). Otherwise a malicious server may exhaust
		the memory of the client.  Bug report by Nils of MWR
		InfoSecurity.
	Avoid triggering an assertion in the OpenLDAP code when the
		connection to an LDAP server is lost while making a query.
		Problem noted and patch provided by Andy Fiddaman.
	If ConnectOnlyTo is set and sendmail is compiled with NETINET6
		it would try to use an IPv6 address if an IPv4 (or
		unparseable) address is specified.
	If SASLv2 is used, make sure that the macro {auth_authen} is
		stored in xtext format to avoid problems with parsing
		it.  Problem noted by Christophe Wolfhugel.
	CONFIG: FEATURE(`ldap_routing') in 8.14.4 tried to add a missing
		-T<TMPF> that is required, but failed for some cases
		that did not use LDAP.  This change has been undone
		until a better solution can be implemented.  Problem
		found by Andy Fiddaman.
	CONFIG: Add cf/ostype/solaris11.m4 for Solaris11 support.
		Contributed by Casper Dik of Oracle.
	CONTRIB: qtool.pl: Deal with H entries that do not have a
		letter between the question marks.  Patch from
		Stefan Christensen.
	DOC: Use a better description for the -i option in sendmail.
		Patch from Mitchell Berger.
	Portability:
		Add support for Darwin 10.x (Mac OS X 10.6).
		Enable HAVE_NANOSLEEP for FreeBSD 3 and later.  Patch
		from John Marshall.
		Enable HAVE_NANOSLEEP for OpenBSD 4.3 and later.
		Use new directory "/system/volatile" for PidFile on
		Solaris 11.  Patch from Casper Dik of Oracle.
		Fix compilation on Solaris 11 (and maybe some other
		OSs) when using OpenSSL 1.0.  Based on patch from
		Jan Pechanec of Oracle.
		Set SOCKADDR_LEN_T and SOCKOPT_LEN_T to socklen_t
		for Solaris 11.  Patch from Roger Faulkner of Oracle.
	New Files:
		cf/ostype/solaris11.m4
2011-06-11 04:44:08 +00:00
taca
49bfcac7f2 Update actionmailer3 pacakge to 3.0.8.
*Rails 3.0.8 (unreleased)*

* Mail dependency increased to 2.2.19
2011-06-11 03:24:05 +00:00
taca
2c6e1b8bab Update Ruby on Rails supporting packages to 2.3.12.
Exact changes are unknown but some bug fixes.
2011-06-11 03:13:46 +00:00
taca
3f2a8c8a82 Update ruby-mail package 2.2.19, latest 2.2.x series.
== Tue Apr 26 09:49:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Update activesupport require to use inflector - closes #217

== Tue Apr 26 06:18:19 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Fixed charset warning issue with multipart messages - https://github.com/arvindsv
* Version bump to 2.2.18 and gem release

== Wed 20 Apr 2011 15:16:20 UTC Mikel Lindsaar <mikel@rubyx.com>

* Mail::Field.new("Subject: foobar", 'iso-2022-jp') does not set charset - https://github.com/yalab

== Tue Apr 19 00:20:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Fixed an exception with nil in Reply-To and References field - https://github.com/dcormier
* Version bump to 2.2.17 and gem release

== Sat Apr 16 12:57:27 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Added support for open SMTP connections and returning the Mail server's response - https://github.com/spiegela
* RE: not appended to subject when replying to a reply - https://github.com/prateekdayal
* Support not ascii compatible charset mail send - https://github.com/yalab
* Fix for issue 208 "mail.body after mail.add_file truncates message body" - https://github.com/glongman
* Handle bad subject encoding (or ":invalid => :replace" is ineffective for utf-8 to utf-8 encoding) - https://github.com/choonkeat
* Handle blank Received header field - https://github.com/bcantin
* Handle part with missing content type - https://github.com/bcantin
* Handle a "<>" Return field - https://github.com/bcantin
* Performance improvements for 1.9 - https://github.com/nobu
* Fix heavy CPU issues when messages are missing a space - https://github.com/scsmith
* Tighten up allowed encodings - https://github.com/scsmith
* Added to_yaml & from_yaml (as well as to_hash & from_hash) - https://github.com/srushti
* Fix up some comments - https://github.com/takahashim
* Version bump to 2.2.16 and gem release
2011-06-11 02:49:39 +00:00
obache
9297f1831d recursive bump from icu shlib major bump. 2011-06-10 21:57:06 +00:00
obache
9572f6d892 recursive bump from textproc/icu shlib major bump. 2011-06-10 09:39:41 +00:00
obache
7820ac4f77 Update SIEVE_VERSION to 0.1.19
Update MANAGESIEVE_VERSION to 0.11.13, for dovecot-1.2.17.
rest part of PR#44970.

Sieve:
v0.1.19 19-05-2011 Stephan Bosch <stephan@rename-it.nl>

	- Enotify extension: fixed inappropriate return type in mailto URI parse
	  function, also fixing ARM compiler warning.
	- Vacation extension: fixed handling of sendmail errors. It produced an
	  additional confusing success message in case of error.
	- Removed header MIME-decoding to fix erroneous address parsing. Applies to
	  address test and vacation command.

ManageSieve:
v0.11.13:
	- ManageSieve: fixed bug in UTF-8 checking of string values.
2011-06-09 13:15:35 +00:00
obache
3a5d9524a7 Update fetchmail to 6.3.20.
Requested by PR#45030.

fetchmail-6.3.20 (released 2011-06-06, 26005 LoC):

# SECURITY BUG FIXES
* CVE-2011-1947:
  STARTTLS: Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the
  set timeout (default five minutes) now. This was reported missing, with
  observed fetchmail freezes beyond a week, by Thomas Jarosch.
     SSL-wrapped connections were unaffected by this timeout, so users of older
  versions can force ssl-wrapped connections -- if supported by the server --
  with the --ssl command line or ssl rcfile option.
  See fetchmail-SA-2011-01.txt for further details.

# BUG FIXES
* IMAP: Do not search for UNSEEN messages in ranges. Usually, there are very few
  new messages and most of the range searches result in nothing. Instead, split
  the long response to make the IMAP driver think that there are multiple lines
  of response. (Sunil Shetye)
* Do not print "skipping message" for old messages even in verbose mode. If
  there are too many old messages, the logs just get filled without any real
  activity. (Sunil Shetye) (suggested by Yunfan Jiang)
* Build: fetchmail now always uses its own MD5 implementation rather than trying
  to find a system library with matched header. The library and header variants
  found on systems are too diverse, and the code size saving is not worth any
  more wasted user or programmer time.

# CHANGES
* Call strlen() only once when removing CRLF from a line. (Sunil Shetye)
* fetchmail sets Internet domain sockets to "keepalive" mode now. Note that
  there is no portable way to configure actual timeouts for this mode, and some
  systems only support a system-wide timeout setting. fetchmail does not
  attempt to tune the time spans of keepalive mode.

# TRANSLATION UPDATES
  [cs]    Chech (Petr Pisar)
  [nl]    Dutch (Erwin Poeze)
  [fr]    French (Frédéric Marchal)
  [de]    German (Matthias Andree)
  [ja]    Japanese (Takeshi Hamasaki)
  [pl]    Polish (Jakub Bogusz)
  [sk]    Slovak (Marcel Telka)

# KNOWN BUGS AND WORKAROUNDS
  (this section floats upwards through the NEWS file so it stays with the
  current release information - however, it was stuck with 6.3.8 for a while)
* fetchmail does not handle messages without Message-ID header well
  (See sourceforge.net bug #780933)
* BSMTP is mostly untested and errors can cause corrupt output.
* Sun Workshop 6 (SPARC) is known to miscompile the configuration file lexer in
  64-bit mode.  Either compile 32-bit code or use GCC to compile 64-bit
  fetchmail.  Note that fetchmail doesn't take advantage of 64-bit code,
  so compiling 32-bit SPARC code should not cause any difficulties.
* fetchmail does not track pending deletes over crashes.
* the command line interface is sometimes a bit stubborn, for instance,
  fetchmail -s doesn't work with a daemon running.
* Linux systems may return duplicates of an IP address in some circumstances if
  no or no global IPv6 addresses are configured.
  (No workaround. Ubuntu Bug#582585, Novell Bug#606980.)
* Kerberos 5 may be broken, particularly on Heimdal, and provide bogus error
  messages. This will not be fixed, because the maintainer has no Kerberos 5
  server to test against. Use GSSAPI.


fetchmail-6.3.19 (released 2010-12-10, 25945 LoC):

# ERRATUM NOTICE ISSUED
* fetchmail 6.3.18 contains several bug fixes that were considered sufficiently
  grave to warrant the issue of an erratum notice, fetchmail-EN-2010-03.txt.

# BUG FIXES
* When specifying multiple local multidrop lists, do not lose wildcard flag.
  (Affects "user foo is bar baz * is joe here")
* In multidrop configurations, an asterisk can now appear anywhere in the list
  of local users, not just at the end.
* In multidrop mode, header parsing is now more verbose in -vv mode, so that it
  becomes possible to see which header is used.
* Make --antispam work from command line (these used to work in rcfiles).
  Reported by Kees Bakker, BerliOS Bug #17599. (Sunil Shetye)
* Smoke test XHTML 1.1 validation, and if it fails, skip validating HTML
  documents.  Skip validating Mailbox-Names-UTF7.html. Several systems have
  broken XHTML 1.1 DTD installations that jeopardize the build.
  Reported by Mihail Nechkin against FreeBSD port.
  Workaround for 6.3.18: build in a separate directory, i. e:
  mkdir build && cd build && ../configure --options-go-here
* Send a NOOP only after a failed STARTTLS in IMAP. (Sunil Shetye)
* Demote GSSAPI verbose/debug syslog to INFO severity. Requested by Carlos E. R.
  and Derek Simkowiak via the fetchmail-users@ mailing list.
* Do STARTTLS/STLS negotiation in IMAP/POP3 if it is mandatory even if the
  server capabilities do not show support for upgradation to TLS.
  To use this, configure --sslproto tls1. (Sunil Shetye)
* IMAP: Understand empty strings as FETCH response, seen on Yahoo. Reported by
  Yasin Malli to fetchmail-users@ 2010-12-10.
  Note that fetchmail continues to expect literals as FETCH response for now.

# DOCUMENTATION
* The manual page now links to IANA for GSSAPI service names.

# TRANSLATION UPDATES
  [cs]    Czech (Petr Pisar)
  [fr]    French (Frédéric Marchal)
  [de]    German
  [it]    Italian (Vincenzo Campanella)
  [pl]    Polish (Jakub Bogusz)


fetchmail-6.3.18 (released 2010-10-09, 25936 LoC):

# SECURITY IMPROVEMENTS TO DEFANG X.509 CERTIFICATE ABUSE
* Fetchmail now only accepts wildcard certificate common names and subject
  alternative names if they start with "*.". Previous versions would accept
  wildcards even if no period followed immediately.
* Fetchmail now disallows wildcards in certificates to match domain literals
  (such as 10.9.8.7), or wildcards in domain literals ("*.168.23.23").
  The test is overly picky and triggers if the pattern (after skipping the
  initial wildcard "*") or domain consists solely of digits and dots, and thus
  matches more than needed.
* Fetchmail now disallows wildcarding top-level domains.

# CRITICAL BUG FIXES AND REGRESSION FIXES
* Fetchmail 6.3.15, 6.3.16, and 6.3.17 would pick up libmd5 to obtain MD5*
  functions, as an effect of an undocumented Solaris MD5 fix.
  This caused all MD5-related functions to malfunction if, for instance,
  libmd5.so was installed on other operating systems as part of libwww on
  machines where long isn't 32-bits, i. e. usually on 64-bit computers.
  Fixes Gentoo Bug #319283, reported, including libwww hint, by Karl Hakimian.
  Side effect: fetchmail will now use -lmd on Solaris rather than -lmd5.
* Fetchmail 6.3.17 warned about insecure SSL/TLS connections even if a matching
  --sslfingerprint was specified. This is an omission from an SSL usability
  change made in 6.3.17.
  Fixes Debian Bug#580796 reported by Roland Stigge.
* Fetchmail will now apply timeouts to the authentication stage.
  This stage encompasses STARTTLS/STLS negotiation in IMAP/POP3.
  Reported missing by Thomas Jarosch.
* Fetchmail now cancels GSSAPI authentication properly when encountering GSS
  errors, such as no or unsuitable credentials.
  It now sends an asterisk on a line by its own, as required in SASL.
    This fixes protocol synchronization issues that cause Authentication
  failures, often observed with kerberized MS Exchange servers.
  Fixes Debian Bug #568455 reported by Patrick Rynhart, and Alan Murrell, to the
  fetchmail-users list. Fix verified by Thomas Voigtmann and Patrick Rynhart.

# BUG FIXES
* Fetchmail will no longer print connection attempts and errors for one host
  in "silent" and "normal" logging modes, unless all connections fail. This
  should reduce irritation around refused-connection logging if services are
  only on an IPv4 socket if the host also supports IPv6. Often observed as
  connections refused to ::1/25 when the subsequent connection to 127.0.0.1/25
  then - silently - succeeds.  Fetchmail, unless in verbose mode, will collect
  all connect errors and only report them if all of them fail.
* Fetchmail will not try GSSAPI authentication automatically, unless it has GSS
  credentials. However, if GSSAPI authentication is requested explicitly,
  fetchmail will always try it.
* Fetchmail now parses response to "FETCH n:m RFC822.SIZE" and "FETCH n
  RFC822.HEADER" in a more flexible manner. (Sunil Shetye)
* The manual page clearly states that --principal is for Kerberos 4 only, not
  for Kerberos 5 or GSSAPI. Found by Thomas Voigtmann.

# CHANGES
* When encountering incorrect headers, fetchmail will refer to the bad-header
  option in the manpage.
  Fixes BerliOS Bug #17272, change suggested by Björn Voigt.
* Fetchmail now decodes and reports GSSAPI status codes upon errors.
* Fetchmail now autoprobes NTLM also for POP3.
* The Fetchmail FAQ has a new item #R15 on authentication failures.

# INTERNAL CHANGES
* The common NTLM authentication code was factored out from pop3.c and imap.c.

# TRANSLATION UPDATES
  [zh_CN] Chinese/simplified (Ji Zheng-Yu)
  [cs]    Czech (Petr Pisar)
  [nl]    Dutch (Erwin Poeze)
  [fr]    French (Frédéric Marchal)
  [de]    German
  [it]    Italian (Vincenzo Campanella)
  [ja]    Japanese (Takeshi Hamasaki)
  [pl]    Polish (Jakub Bogusz)
  [sk]    Slovak (Marcel Telka)
2011-06-09 11:52:33 +00:00
schmonz
1f147ed266 Update to 2.71. From the changelog:
* Potentially safer method for writing feeds.dat on UNIX
* Handle via links with no title attribute
* Handle attributes more cleanly with OVERRIDE_EMAIL and DEFAULT_EMAIL
2011-06-09 06:21:58 +00:00
schmonz
b7d1278142 LICENSE=gnu-gpl-v2. 2011-06-07 03:25:51 +00:00
schmonz
28d74fcbb4 LICENSE=public-domain. 2011-06-07 03:24:32 +00:00
schmonz
fadd3f4ce3 DESTDIR support, PKGMANDIR support, OS X fixes, general cleanups.
For ${OPSYS}/${USE_DESTDIR}/${PKGMANDIR} combinations that already
worked, no functional change (hence no PKGREVISION bump).
2011-06-07 02:53:42 +00:00
adam
b2a345f225 Changes 0.5.3:
This bugfix release fixes two important bugs in the IMAP communication which
prevented sent messages from being saved in version 0.5.2.
2011-06-03 07:21:01 +00:00
schmonz
1215f5c6dc Update to 4.20.3. From the changelog:
-fix logging errors in error paths.  Thanks: Visa Putkinen.
2011-05-30 22:14:09 +00:00
obache
ba235aa4fb Update IM to 151.
- Tiny changes for Perl 5.12.
- Build scripts are updated.
  Use `sysconfdir' instead of `libdir' for the configuration file.
  ${DESTDIR) is prepended to each installed target.
2011-05-28 07:54:01 +00:00
tron
82222c5d18 Update "milter-greylist" package to version 4.2.7. Changes since 4.2.6:
- Fix ratelimit sliding window for computing average
- Fix p0f port byte order (Enrico Scholz)
- Fix milter-greylist.m4 for newer Sendmail (Joe Pruett)
- Fix autoconf warning about --datarootdir (R P Herrold)
2011-05-25 07:15:32 +00:00