Navigation:
Browse pkgsrc
(this page)
mail mailman
CVSweb ] [ 
Homepage ] [ 
RSS ] [ 
Required by ] [ 
Add to tracker ]| 2023-08-14 07:25:36 by Thomas Klausner | Files touched by this commit (1247) |
Log message: *: recursive bump for Python 3.11 as new default |
| 2022-08-23 23:49:56 by Thomas Klausner | Files touched by this commit (7) |
Log message: *: switch to appropriate py-dns version |
| 2022-06-30 13:19:02 by Nia Alarie | Files touched by this commit (524) |
Log message: *: Revbump packages that use Python at runtime without a PKGNAME prefix |
| 2021-10-26 20:42:55 by Thomas Merkel | Files touched by this commit (3) |
Log message:
mail/mailman: Update to 2.1.35
2.1.35 (19-Oct-2021)
Security
- A potential for for a list member to carry out an off-line brute force
attack to obtain the list admin password has been reported by Andre
Protas, Richard Cloke and Andy Nuttall of Apple. This is fixed.
CVE-2021-42096 (LP:#1947639)
- A CSRF attack via the user options page could allow takeover of a users
account. This is fixed. CVE-2021-42097 (LP:#1947640)
Bug Fixes and other patches
- Fixed an issue where sometimes the wrapper message for DMARC mitigation
Wrap Message has no Subject:. (LP: #1915655)
- Plain text message bodies with Content-Disposition: and no declared
charset are no longer scrubbed. (LP: #1917968)
- CommandRunner now recodes message bodies in the charset of the user's
or list's language to avoid a possible UnicodeError when including the
message body in the reply. (LP: #1921682)
- Delivery disabled by bounce notices to admins now have 'disabled'
properly translated. (LP: #1922843)
- DMARC policy discovery ignores domains with multiple DMARC records per
RFC 7849, (LP: 1931029)
|
| 2021-10-26 12:54:34 by Nia Alarie | Files touched by this commit (356) |
Log message: mail: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes The following distfiles were unfetchable (possibly fetched conditionally?): ./mail/qmail/distinfo netqmail-1.05-TAI-leapsecs.patch |
| 2021-10-07 16:25:52 by Nia Alarie | Files touched by this commit (357) |
Log message: mail: Remove SHA1 hashes for distfiles |
| 2020-12-04 21:45:51 by Nia Alarie | Files touched by this commit (456) |
Log message: Revbump packages with a runtime Python dep but no version prefix. For the Python 3.8 default switch. |
2020-08-26 20:40:36 by Thomas Klausner | Files touched by this commit (4) |  |
Log message:
mailman: update to 2.1.34.
Update based on wip/mailman by Jesus Cea.
Clean some pkglint while here.
2.1.34 (26-Jun-2020)
i18n
- The Spanish translation has been updated by Omar Walid Llorente.
Bug Fixes and other patches
- The fix for LP: #1859104 can result in ValueError being thrown on
attempts to subscribe to a list. This is fixed and extended to apply
REFUSE_SECOND_PENDING to unsubscription as well. (LP: #1878458)
- DMARC mitigation no longer misses if the domain name returned by DNS
contains upper case. (LP: #1881035)
- A new WARN_MEMBER_OF_SUBSCRIBE setting can be set to No to prevent
mailbombing of a member of a list with private rosters by repeated
subscribe attempts. (LP: #1883017)
- Very long filenames for scrubbed attachments are now truncated.
(LP: #1884456)
|
New packages: