Navigation:
Browse pkgsrc
(this page)| 2007-01-17 20:18:01 by Matthias Scheler | Files touched by this commit (3) |
Log message: Use documented trick to disable Python detection instead of patching "Makefile.in". Hint provided by Matthias Andree in private e-mail. |
| 2007-01-17 18:36:51 by Lubomir Sedlacik | Files touched by this commit (2) |
Log message: Add second Berlios download site to MASTER_SITES. The main one gets overloaded from time to time.. (e.g., now). |
2007-01-17 15:29:12 by Matthias Scheler | Files touched by this commit (14) |  |
Log message: Update "fetchmail" and "fetchmailconf" packages to version 6.3.6. The list of changes since version 6.2.5.5 is too large to mention here. The new version provides a fix for the vulnerability reported in the fetchmail-SA-2006-02.txt advisory. |
| 2006-04-17 09:07:54 by Johnny C. Lam | Files touched by this commit (528) |
Log message:
Strip ${PKGLOCALEDIR} from PLISTs of packages that already obey
PKGLOCALEDIR and which install their locale files directly under
${PREFIX}/${PKGLOCALEDIR} and sort the PLIST file entries. From now
on, pkgsrc/mk/plist/plist-locale.awk will automatically handle
transforming the PLIST to refer to the correct locale directory.
|
| 2006-04-13 20:23:45 by Johnny C. Lam | Files touched by this commit (292) |
Log message: BUILD_USE_MSGFMT and USE_MSGFMT_PLURALS are obsolete. Replace with USE_TOOLS+=msgfmt. |
| 2006-02-06 00:11:50 by Joerg Sonnenberger | Files touched by this commit (4082) |
Log message: Recursive revision bump / recommended bump for gettext ABI change. |
| 2005-12-29 07:22:26 by Johnny C. Lam | Files touched by this commit (597) |
Log message: Remove USE_PKGINSTALL from pkgsrc now that mk/install/pkginstall.mk automatically detects whether we want the pkginstall machinery to be used by the package Makefile. |
2005-12-20 15:27:53 by Thorsten Frueauf | Files touched by this commit (7) |  |
Log message:
Update fetchmail to 6.2.5.5.
Change homepage to http://fetchmail.berlios.de/ and update MASTER_SITES.
Changes introduced since 6.2.5:
fetchmail-6.2.5.X is a security fix branch that forked off
fetchmail-6.2.5. It does not change for anything but security and the
most severe bug fixes. Note that no 6.2.5.X security audits are planned
except when a particular bug is reported, and that 6.2.5.X is unsafe to
use on some systems, particularly those that lack a *working and secure*
snprintf implementation.
The fetchmail 6.2.5.X branch will be discontinued early in 2006.
fetchmail-6.2.5.5 2005-12-19 Matthias Andree
* SECURITY FIX CVE-2005-4348: fix null pointer dereference in
multidrop mode when the message is empty. Reported by Daniel Drake
<http://article.gmane.org/gmane.mail.fetchmail.user/7573> and others
(Debian Bug #343836). Fix by Sunil Shetye.
* Fix Debian bug #301964, fetchmail leaks sockets when SSL negotiation
fails. Fix suggested by Goswin Brederlow.
* Add fetchmail-SA-2005-{01,02,03}.txt
fetchmail-6.2.5.4 2005-11-13 Matthias Andree
* Also ship pre-built rcfile_y.[ch] for systems that don't have flex,
yacc or bison.
* On FreeBSD, add /usr/local/include to CPPFLAGS so that libintl.h is found.
* Avoid automatically picking up HESIOD implementations that lack
hesiod_getmailhost, such as the one in FreeBSD's base system.
* Fix makedepend for separated build (where the build is not run from
the source directory), but prevent packaging from separated build, it
yields bogus results.
* Fix resolv.h autodetection.
* Add +HESIOD to version printout if appropriate.
fetchmail-6.2.5.3 2005-11-12 Matthias Andree
* SECURITY FIX CVE-2005-3088: fetchmailconf: fix password exposure: use
umask 077 before opening output file and restore umask later.
* Critical fix: fix IMAP timeouts, counting message count down on
servers that do not send EXISTS counts after EXPUNGE. Debian Bug#314509.
* Ship pre-built rcfile_l.c for systems that don't have flex.
* Build environment: Update included gettext. Fix
--with-included-gettext. Fix parallel build (make -j). Fix "always
rebuild fetchmail" syndrome.
* Do not link against -ll or -lfl (not needed).
fetchmail-6.2.5.2
(patch Fri Jul 22 01:52 GMT 2005,
tarball Sat Jul 23 21:34 GMT 2005)
* README: Added a note about release status - READ IT!
* Note: Due to a Makefile.in bug, you may need to use GNU make.
* SECURITY FIX CVE-2005-2335: truncate UIDL replies, lest malicious or
compromised POP3 servers overflow fetchmail's stack. Debian bug
#212762. This is a remote root exploit.
Thanks: Miloslav Trmac for pointing out the fix in 6.2.5.1 was buggy.
Thanks: Ludwig Nussel for a much simpler fix.
* Critical fix: omit blank between MAIL FROM: and <user@example.org>,
as this causes mail loss with some listeners.
* Fix: POP2 driver wouldn't properly check authentication failure.
* Sunil Shetye's fix to force fetchsizelimit to 1 for APOP and RPOP.
|
| 2005-12-06 00:55:25 by Roland Illig | Files touched by this commit (413) |
Log message: Ran "pkglint --autofix", which corrected some of the quoting issues in CONFIGURE_ARGS. |
| 2005-11-01 20:16:52 by Adrian Portelli | Files touched by this commit (2) |
Log message: Add patch-ak for a fetchmailconf security issue. This patch does not impact the fetchmail package so no version bump is required. |
New packages: