libesmtp/libesmtp.changes

-------------------------------------------------------------------
Tue Dec 27 10:32:59 UTC 2022 - Paolo Stivanin <info@paolostivanin.com>

- Update to 1.1.0: 
  * CVE-2019-19977: avoid potential stack overflow in NTLM authenticator.
  * Migrate build system to Meson
  * Remove GNU libltdl support, assume dlopen() always available.
  * Use a linker map to restrict public symbols to API only.
  * Add sentinel and ‘format printf’ attributes to function declarations.
  * Remove getaddrinfo() implementation.
  * Use strlcpy() for safer string copies, provide implementation
    for systems that need it.
  * Update ‘application data’ APIs
  * Add ‘smtp_get_server_name()’ API.
  * Collect replacement functions into missing.c
  * Prohibit Resent-Reply-To: header.
  * Use canonic domain name of MTA where known 
  * Implement rfc2822date() with strftime() if available.
  * add option for XDG file layout convention instead of ~/.authenticate
  * OpenSSL
    + Remove support for OpenSSL versions before v1.1.0
    + Update OpenSSL API calls used for modern versions
    + Require TLS v1 or higher
  * Add add_ntlm.patch
  * Drop the following patches:
    + libesmtp-removedecls.diff
    + libesmtp-1.0.4-bloat.patch
    + libesmtp-fix-cve-2019-19977.patch
    + libesmtp-openssl11.patch
    + libesmtp-tlsv12.patch

-------------------------------------------------------------------
Fri Aug  6 09:16:53 UTC 2021 - Yifan Jiang <yfjiang@suse.com>

- Add libesmtp-fix-cve-2019-19977.patch: Fix stack-based buffer
  over-read in ntlm/ntlmstruct.c (bsc#1160462 bsc#1189097).

-------------------------------------------------------------------
Mon Jan 14 14:50:46 CET 2019 - kukuk@suse.de

- Use %license instead of %doc [bsc#1082318]

-------------------------------------------------------------------
Sat Mar  3 16:32:02 UTC 2018 - jengelh@inai.de

- Drop ineffective --with-pic. Drop %__-type macro indirections.
  Drop redundant %clean section.
- Implement shared library packaging guideline.

-------------------------------------------------------------------
Fri Feb 16 20:12:12 UTC 2018 - crrodriguez@opensuse.org

- SSL support was silently lost on openSSL 1.1 update.
  libesmtp-openssl11.patch makes things work again.

-------------------------------------------------------------------
Fri Sep 30 14:58:41 UTC 2016 - crrodriguez@opensuse.org

- Add libesmtp-tlsv12.patch: All TLS clients must support and use
  the highest TLS version available if possible not only TLS 1.0.
  Patch sent to upstream long time ago, no response. website
  has also vanished from the internet (bsc#1005909).
- Pass --disable-isoc to configure, pick the compiler's default C
  standard mode (currently gnu11).

-------------------------------------------------------------------
Mon Feb  4 14:39:53 UTC 2013 - coolo@suse.com

- update license to new format

-------------------------------------------------------------------
Tue Aug 10 14:37:42 CEST 2010 - dimstar@opensuse.org

- Update to version 1.0.6:
  + Each component matched by match-domain() is either a single
    '*' which matches anything or a case-insensitive comparison
    with a string of alphanumeric characters or a '-'.
- Changes from version 1.0.5:
  + The Gmail server reports enhanced status codes but then fails
    to provide them in some cases. The parser is now tolerant of
    this but warns the application using a new event flag
    SMTP_EV_SYNTAXWARNING that it is progressing despite the syntax
    error.
  + Fixed bug where To, Cc, Bcc etc. accepted only single values
    instead of a list.
  + Fix reversed comparison on the return value of gettimeofday().
- Drop upstream fixed patches libesmtp-1.0.4-multiple-cc.patch and
  libestmp-commonname.diff.
- Cleaned spec file using spec-cleaner.

-------------------------------------------------------------------
Wed Apr 28 08:16:43 UTC 2010 - freitag@novell.com

- Add libestmp-commonname.diff to do stricter check on commonName
  bnc#585393.

-------------------------------------------------------------------
Wed Aug 06 13:52:23 CEST 2008 - bwalle@suse.de

- allow multiple calls of smtp_set_header() for Cc and Bcc headers
- disable lwres because we don't want to have a daemon (the lwresd)
  running just for address resolution

-------------------------------------------------------------------
Tue Sep  4 16:41:52 CEST 2007 - mrueckert@suse.de

- remove postfix from the buildrequires
- do not package generic INSTALL file

-------------------------------------------------------------------
Tue Sep  4 09:37:02 CEST 2007 - crrodriguez@suse.de

- fix #307257 missing requires of the libesmtp-devel package

-------------------------------------------------------------------
Wed Jan 25 21:32:18 CET 2006 - mls@suse.de

- converted neededforbuild to BuildRequires

-------------------------------------------------------------------
Tue Jan 17 14:27:06 CET 2006 - lmichnovic@suse.cz

- Updated to version 1.0.4
- enabled support for lwres: lwres_includedir.patch; bind-devel added into NFB
- enabled support for ntlm, etrn

-------------------------------------------------------------------
Wed Nov  2 21:47:32 CET 2005 - dmueller@suse.de

- don't build as root

-------------------------------------------------------------------
Mon Sep 26 22:05:45 CEST 2005 - mls@suse.de

- move .so symlink into devel package
- make devel package require base package

-------------------------------------------------------------------
Sun May  8 18:08:46 CEST 2005 - mmj@suse.de

- Don't declare things we have for sure on linux

-------------------------------------------------------------------
Fri Mar 26 11:43:50 CET 2004 - mmj@suse.de

- Add postfix to # neededforbuild

-------------------------------------------------------------------
Thu Feb 19 14:53:54 CET 2004 - sbrabec@suse.cz

- Updated to version 1.0.2.

-------------------------------------------------------------------
Wed Jul 30 08:36:09 CEST 2003 - hhetter@suse.de

- initial SuSE package