update to fetchmail-6.3.17

OBS-URL: https://build.opensuse.org/package/show/server:mail/fetchmail?expand=0&rev=22

fetchmail-6.3.16.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:2e316c8ebef47e1266217e5f0e1aa453707f19cf8ddbfacfcbc9eab101757d86
-size 1628808

fetchmail-6.3.17.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d7a01ceac184c7ebde9a42982e310beec467deb5b3d05c4e413e48cd2619ca24
+size 1642598

fetchmail.changes

@@ -1,3 +1,50 @@
+-------------------------------------------------------------------
+Thu Jul 22 10:40:15 UTC 2010 - puzel@novell.com
+
+- update to fetchmail-6.3.17 
+ # SECURITY FIX
+  * CVE-2010-1167: Fetchmail before release 6.3.17 did not properly 
+    sanitize external input (mail headers and UID). 
+ # FEATURES
+  * Fetchmail now supports a --sslcertfile <file> option to specify 
+    a "CA bundle" file (a file that contains trusted CA certificates). 
+  * Fetchmail now supports a FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS
+    environment variable to force loading the default SSL CA 
+    certificate locations even if --sslcertfile or --sslcertpath 
+    is used.
+ # REGRESSION FIX
+  * Fix string handling in rcfile scanner, which caused fetchmail 
+    to misparse a run control file in certain circumstances.
+ # BUG FIXES
+  * Plug memory leak when using a "defaults" entry in the run
+    control file.
+  * Do not print SSL certificate mismatches unless verbose or
+    --sslcertck is enabled.
+  * Do not lose "set invisible" in fetchmailconf.
+ # CHANGES
+  * Usability: SSL certificate chains are fully printed in -v -v
+    mode, and there are now helpful pointers to --sslcertpath and
+    c_rehash for "unable to get local issuer certificate" and
+    self-signed certificates -- these usually hint to missing root
+    signing CAs in the certs directory.
+  * Several fixes for compiler (GCC, Intel C++, CLang) and
+    autotools warnings
+  * Memory allocation failures will now cause abnormal program
+    abort (SIGABRT), no longer an exit with unspecified code.
+ # DOCUMENTATION
+  * Fix table of global option to read "set softbounce" where
+    there used to be a 2nd copy of "set spambounce".
+  * In the --sslcertpath description, mention that OpenSSL upgrade
+    (and a 0.9.X to 1.0.0 upgrade in particular) may require
+    running c_rehash.
+- dropped fetchmail-SA-2010-02.patch (fixed upstream)
+- cleaned up buildrequires
+
+-------------------------------------------------------------------
+Mon Apr 19 12:36:27 UTC 2010 - puzel@novell.com
+
+- add fetchmail-SA-2010-02.patch (bnc#597673) 
+
 -------------------------------------------------------------------
 Wed Apr 14 16:00:29 UTC 2010 - puzel@novell.com
 

fetchmail.spec

@@ -1,5 +1,5 @@
 #
-# spec file for package fetchmail (Version 6.3.16)
+# spec file for package fetchmail (Version 6.3.17)
 #
 # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
@@ -19,7 +19,9 @@
 
 
 Name:           fetchmail
-BuildRequires:  ed openssl-devel opie postfix procmail pwdutils python-devel
+BuildRequires:  openssl-devel 
+BuildRequires:  opie 
+BuildRequires:  python-devel
 %if 0%{?suse_version} > 1000
 %define with_krb5 1
 %endif
@@ -29,8 +31,8 @@ BuildRequires:  krb5-devel
 License:        GPLv2+ ; Other uncritical OpenSource License ; Public Domain, Freeware
 Group:          Productivity/Networking/Email/Utilities
 AutoReqProv:    on
-Version:        6.3.16
-Release:        2
+Version:        6.3.17
+Release:        3
 Source:         %{name}-%{version}.tar.bz2
 Source1:        %{name}.init
 Source2:        %{name}.logrotate