pkgsrc.se | The NetBSD package collection

./mail/dovecot2-sqlite, Secure IMAP and POP3 server (SQLite plugin)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 2.3.21.1nb3, Package name: dovecot-sqlite-2.3.21.1nb3, Maintainer: adam

Dovecot is an open source IMAP and POP3 server for Linux/UNIX-like systems,
written with security primarily in mind. This package contains the SQLite
backend plugins.

Required to run:
[shells/bash] [mail/dovecot2] [archivers/lz4] [archivers/zstd]

Package options: kqueue, pam, ssl, tcpwrappers

Master sites:

https://dovecot.org/releases/2.3/ (Download)

Filesize: 7658.246 KB

Version history: (Expand)

(2024-11-15) Updated to version: dovecot-sqlite-2.3.21.1nb3
(2024-11-01) Updated to version: dovecot-sqlite-2.3.21.1nb2
(2024-11-01) Updated to version: dovecot-sqlite-2.3.21.1nb1
(2024-08-19) Updated to version: dovecot-sqlite-2.3.21.1
(2024-05-29) Updated to version: dovecot-sqlite-2.3.21nb3
(2023-11-08) Updated to version: dovecot-sqlite-2.3.21nb2

CVS history: (Expand)

2024-11-14 23:22:33 by Thomas Klausner | Files touched by this commit (2429)

Log message:
*: recursive bump for icu 76 shlib major version bump

2024-11-01 13:55:19 by Thomas Klausner | Files touched by this commit (2426)

Log message:
*: revbump for icu downgrade

2024-11-01 01:54:33 by Thomas Klausner | Files touched by this commit (2427)

Log message:
*: recursive bump for icu 76.1 shlib bump

2024-08-19 11:29:57 by Adam Ciarcinski | Files touched by this commit (5) | Package updated

Log message:
dovecot2: updated to 2.3.21.1

v2.3.21.1

- CVE-2024-23184: A large number of address headers in email resulted
  in excessive CPU usage.
- CVE-2024-23185: Abnormally large email headers are now truncated or
  discarded, with a limit of 10MB on a single header and 50MB for all
  the headers of all the parts of an email.
- oauth2: Dovecot would send client_id and client_secret as POST parameters
  to introspection server. These need to be optionally in Basic auth
  instead as required by OIDC specification.
- oauth2: JWT key type check was too strict.
- oauth2: JWT token audience was not validated against client_id as
  required by OIDC specification.
- oauth2: XOAUTH2 and OAUTHBEARER mechanisms were not giving out
  protocol specific error message on all errors. This broke OIDC discovery.
- oauth2: JWT aud validation was not performed if aud was missing
  from token, but was configured on Dovecot.

2024-05-29 18:35:19 by Adam Ciarcinski | Files touched by this commit (1929) | Package updated

Log message:
revbump after icu and protobuf updates

2023-11-08 14:21:43 by Thomas Klausner | Files touched by this commit (2377)

Log message:
*: recursive bump for icu 74.1

2023-04-19 10:12:01 by Adam Ciarcinski | Files touched by this commit (2359) | Package updated

Log message:
revbump after textproc/icu update

2023-01-01 16:43:42 by Adam Ciarcinski | Files touched by this commit (5) | Package updated

Log message:
dovecot2: updated to 2.3.20

v2.3.20

+ Add dsync_features=no-header-hashes. When this setting is enabled and
  one dsync side doesn't support mail GUIDs (i.e. imapc), there is no
  fallback to using header hashes. Instead, dsync assumes that all mails
  with identical IMAP UIDs contains the same mail contents. This can
  significantly improve dsync performance with some IMAP servers that
  don't support caching Date/Message-ID headers.
+ lua: HTTP client has more settings now, see
  https://doc.dovecot.org/admin_manual/lua/#dovecot.http.client
+ replicator: "doveadm replicator status" command now outputs when the
  next sync is expected for the user.
- LAYOUT=index: duplicate GUIDs were not cleaned out. Also the list
  recovery was not optimal.
- auth: Assert crash would occur when iterating multiple userdb
  backends.
- director: Logging into director using master user with
  auth_master_user_separator character redirected user to a wrong
  backend, unless master_user_separator setting was also set to the same
  value. Merged these into auth_master_user_separator.
- dsync: Couldn't always fix folder GUID conflicts automatically with
  Maildir format. This resulted in replication repeatedly failing
  with "Remote lost mailbox GUID".
- dsync: Failed to migrate INBOX when using namespace prefix=INBOX/,
  resulting in "Remote lost mailbox GUID" errors.
- dsync: INBOX was created too early with namespace prefix=INBOX/,
  resulting a GUID conflict. This may have been resolved automatically,
  but not always.
- dsync: v2.3.18 regression: Wrong imapc password with dsync caused
  Panic: file lib-event.c: line 506 (event_pop_global):
  assertion failed: (event == current_global_event)
- imapc: Requesting STATUS for a mailbox with imapc and INDEXPVT
  configured did not return correct (private) unseen counts.
- lib-dict: Process would crash when committing data to redis without
  dict proxy.
- lib-mail: Corrupted cached BODYSTRUCTURE caused panic during FETCH.
  Fixes: Panic: file message-part-data.c: line 579 (message_part_is_attachment):
  assertion failed: (data != NULL). v2.3.13 regression.
- lib-storage: mail_attribute_dict with dict-sql failed when it tried to
  lookup empty dict keys.
- lib: ioloop-kqueue was missing include breaking some BSD builds.
- lua-http: Dovecot Lua HTTP client could not resolve DNS names in mail
  processes, because it expected "dns-client" socket to exist in the
  current directory.
- oauth2: Using %{oauth2:name} variables could cause useless
  introspections.
- pop3: Sending POP3 command with ':' character caused an assert-crash.
  v2.3.18 regression.
- replicator: Replication queue had various issues, potentially causing
  replication requests to become stuck.
- stats: Invalid Prometheus label names were created with specific

v0.5.20 of Pigeonhole
* No changes - release done to keep version numbers synced.