- update to 6.3,25
# CRITICAL AND REGRESSION FIXES
* Plug a memory leak in OpenSSL's certificate verification callback.
This would affect fetchmail configurations running with SSL in daemon mode
more than one-shot runs.
Reported by Erik Thiele, and pinned by Dominik Heeg,
fixes Debian Bug #688015.
This bug was introduced into fetchmail 6.3.0 (committed 2005-10-29)
when support for subjectAltName was added through a patch by Roland
Stigge, submitted as Debian Bug#201113.
* The --logfile option now works again outside daemon mode, reported by Heinz
Diehl. The documentation that I had been reading was inconsistent with the
code, and only parts of the manual page claimed that --logfile was only
effective in daemon mode.
# BUG FIXES
* Fix a memory leak in out-of-memory error condition while handling plugins.
Report and patch by John Beck (found with Parfait static code analyzer).
* Fix a NULL pointer dereference in out-of-memory error condition while handling
plugins.
Report and patch by John Beck (found with Parfait static code analyzer).
# CHANGES
* Improved reporting when SSL/TLS X.509 certificate validation has failed,
working around a not-so-recent swapping of two OpenSSL error codes, and
a practical impossibility to distinguish broken certification chains from
missing trust anchors (root certificates).
* OpenSSL decoded errors are now reported through report(), rather than dumped
to stderr, so that they should show up in logfiles and/or syslog.
* The fetchmail manual page no longer claims that MD5 were the default OpenSSL
hash format (for use with --sslfingerprint). Reported by Jakob Wilk,
PARTIAL fix for Debian Bug#700266.
OBS-URL: https://build.opensuse.org/request/show/159960
OBS-URL: https://build.opensuse.org/package/show/server:mail/fetchmail?expand=0&rev=48
- update to 6.3.23
# REGRESSION FIXES
* Fix compilation with OpenSSL implementations before 0.9.8m that lack
SSL_CTX_clear_options. Patch by Earl Chew.
Note that the use of older OpenSSL versions with fetchmail is unsupported and
*not* recommended.
# BUG FIXES
* Fix combination of --plugin and -f -. Patch by Alexander Zangerl,
to fix Debian Bug#671294.
* Clean up logfile vs. syslog handling, and in case logfile overrides
syslog, send a message to the latter stating where logging goes.
# CHANGES
* The build process can now be made a bit more silent and concise through
./configure --enable-silent-rules, or by adding "V=0" to the make command.
# WORKAROUNDS
* Make Maillennium POP3 workarounds less specific, to encompass
Maillennium POP3/UNIBOX (Maillennium V05.00c++). Reported by Eddie
via fetchmail-users mailing list, 2012-10-13.
# TRANSLATION UPDATES
OBS-URL: https://build.opensuse.org/request/show/145066
OBS-URL: https://build.opensuse.org/package/show/server:mail/fetchmail?expand=0&rev=46
- update to 6.3.22
# SECURITY FIXES
* CVE-2012-3482 (bnc#775988)
* CVE-2011-3389
# BUG FIX
* The Server certificate: message in verbose mode now appears on stdout like the
remainder of the output. Reported by Henry Jensen, to fix Debian Bug #639807.
* The GSSAPI-related autoconf code now matches gssapi.c better, and uses
a different check to look for GSS_C_NT_HOSTBASED_SERVICE.
This fixes the GSSAPI-enabled build on NetBSD 6 Beta.
# CHANGES
* The security and errata notices fetchmail-{EN,SA}-20??-??.txt are now
under the more relaxed CC BY-ND 3.0 license (the noncommercial clause
was dropped). The Creative Commons address was updated.
* The Python-related Makefile.am parts were simplified to avoid an automake
1.11.X bug around noinst_PYTHON, Automake Bug #10995.
* Configuring fetchmail without SSL now triggers a configure warning,
and asks the user to consider running configure --with-ssl.
# WORKAROUNDS
* Some servers, notably Zimbra, return A1234 987 FETCH () in response to
a header request, in the face of message corruption. fetchmail now treats
these as temporary errors. Report and Patch by Mikulas Patocka, Red Hat.
* Some servers, notably Microsoft Exchange, return "A0009 OK FETCH completed."
without any header in response to a header request for meeting reminder
messages (with a "meeting.ics" attachment). fetchmail now treats these as
transient errors. Report by John Connett, Patch by Sunil Shetye.
OBS-URL: https://build.opensuse.org/request/show/133601
OBS-URL: https://build.opensuse.org/package/show/server:mail/fetchmail?expand=0&rev=42
