From 094ab788fa91802695fe39e6b0814c3e67bc134f94213e19730c1a8d45e32942 Mon Sep 17 00:00:00 2001 From: Petr Uzel Date: Thu, 22 Jul 2010 10:55:19 +0000 Subject: [PATCH] update to fetchmail-6.3.17 OBS-URL: https://build.opensuse.org/package/show/server:mail/fetchmail?expand=0&rev=22 --- fetchmail-6.3.16.tar.bz2 | 3 --- fetchmail-6.3.17.tar.bz2 | 3 +++ fetchmail.changes | 47 ++++++++++++++++++++++++++++++++++++++++ fetchmail.spec | 10 +++++---- 4 files changed, 56 insertions(+), 7 deletions(-) delete mode 100644 fetchmail-6.3.16.tar.bz2 create mode 100644 fetchmail-6.3.17.tar.bz2 diff --git a/fetchmail-6.3.16.tar.bz2 b/fetchmail-6.3.16.tar.bz2 deleted file mode 100644 index 0cd850e..0000000 --- a/fetchmail-6.3.16.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:2e316c8ebef47e1266217e5f0e1aa453707f19cf8ddbfacfcbc9eab101757d86 -size 1628808 diff --git a/fetchmail-6.3.17.tar.bz2 b/fetchmail-6.3.17.tar.bz2 new file mode 100644 index 0000000..eddfe1a --- /dev/null +++ b/fetchmail-6.3.17.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:d7a01ceac184c7ebde9a42982e310beec467deb5b3d05c4e413e48cd2619ca24 +size 1642598 diff --git a/fetchmail.changes b/fetchmail.changes index 2ecf501..edd62ea 100644 --- a/fetchmail.changes +++ b/fetchmail.changes @@ -1,3 +1,50 @@ +------------------------------------------------------------------- +Thu Jul 22 10:40:15 UTC 2010 - puzel@novell.com + +- update to fetchmail-6.3.17 + # SECURITY FIX + * CVE-2010-1167: Fetchmail before release 6.3.17 did not properly + sanitize external input (mail headers and UID). + # FEATURES + * Fetchmail now supports a --sslcertfile option to specify + a "CA bundle" file (a file that contains trusted CA certificates). + * Fetchmail now supports a FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS + environment variable to force loading the default SSL CA + certificate locations even if --sslcertfile or --sslcertpath + is used. + # REGRESSION FIX + * Fix string handling in rcfile scanner, which caused fetchmail + to misparse a run control file in certain circumstances. + # BUG FIXES + * Plug memory leak when using a "defaults" entry in the run + control file. + * Do not print SSL certificate mismatches unless verbose or + --sslcertck is enabled. + * Do not lose "set invisible" in fetchmailconf. + # CHANGES + * Usability: SSL certificate chains are fully printed in -v -v + mode, and there are now helpful pointers to --sslcertpath and + c_rehash for "unable to get local issuer certificate" and + self-signed certificates -- these usually hint to missing root + signing CAs in the certs directory. + * Several fixes for compiler (GCC, Intel C++, CLang) and + autotools warnings + * Memory allocation failures will now cause abnormal program + abort (SIGABRT), no longer an exit with unspecified code. + # DOCUMENTATION + * Fix table of global option to read "set softbounce" where + there used to be a 2nd copy of "set spambounce". + * In the --sslcertpath description, mention that OpenSSL upgrade + (and a 0.9.X to 1.0.0 upgrade in particular) may require + running c_rehash. +- dropped fetchmail-SA-2010-02.patch (fixed upstream) +- cleaned up buildrequires + +------------------------------------------------------------------- +Mon Apr 19 12:36:27 UTC 2010 - puzel@novell.com + +- add fetchmail-SA-2010-02.patch (bnc#597673) + ------------------------------------------------------------------- Wed Apr 14 16:00:29 UTC 2010 - puzel@novell.com diff --git a/fetchmail.spec b/fetchmail.spec index a55335f..e796f8f 100644 --- a/fetchmail.spec +++ b/fetchmail.spec @@ -1,5 +1,5 @@ # -# spec file for package fetchmail (Version 6.3.16) +# spec file for package fetchmail (Version 6.3.17) # # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -19,7 +19,9 @@ Name: fetchmail -BuildRequires: ed openssl-devel opie postfix procmail pwdutils python-devel +BuildRequires: openssl-devel +BuildRequires: opie +BuildRequires: python-devel %if 0%{?suse_version} > 1000 %define with_krb5 1 %endif @@ -29,8 +31,8 @@ BuildRequires: krb5-devel License: GPLv2+ ; Other uncritical OpenSource License ; Public Domain, Freeware Group: Productivity/Networking/Email/Utilities AutoReqProv: on -Version: 6.3.16 -Release: 2 +Version: 6.3.17 +Release: 3 Source: %{name}-%{version}.tar.bz2 Source1: %{name}.init Source2: %{name}.logrotate