cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
64,188 Commits 1 Branch 0 Tags 554 MiB
1c26461f73
Commit Graph

49 Commits

Author SHA1 Message Date
stsp
8d294869c6 Add patch from upstream to fix bogus ssl check warning when the 
sslfingerprint option is used.
hints and ok sthen@
 2010-06-09 08:34:59 +00:00
giovanni
09a7c52666 Update to 6.3.17 
ok kili@
 2010-05-19 15:27:18 +00:00
jasper
168efadf72 - update fetchmail to 6.3.15 
from charles smith, thanks.
 2010-03-31 19:12:06 +00:00
sthen
3927255cfd security update to 6.3.14, heap overflow in verbose mode SSL cert display 
on signed char arch. http://www.fetchmail.info/fetchmail-SA-2010-01.txt

"This might be exploitable to inject code if
- - fetchmail is run in verbose mode
AND
- - the host running fetchmail considers char signed
AND
- - the server uses malicious certificates with non-printing characters
  that have the high bit set
AND
- - these certificates manage to inject shell-code that consists purely of
  printable characters.

It is believed to be difficult to achieve all this."
 2010-03-22 01:28:40 +00:00
sthen
706b5d1ee3 update to 6.3.13, fixing a regression introduced in 6.3.12. ok jasper@ 2009-11-02 19:47:49 +00:00
sthen
4ab60c1904 SECURITY update to 6.3.12, fixes CVE-2009-2666 (bad handling of nulls 
in SSL domain names).  ok jasper@
 2009-10-11 20:52:17 +00:00
jasper
5141823be7 - update fetchmail to 6.3.9 
ok sthen@
 2009-02-17 12:08:44 +00:00
bernd
457b898d2a Fix stunnel usage with TLS1 encryption. 
From https://lists.berlios.de/pipermail/fetchmail-users/2007-December/001396.html
via Dieter Rauschenberger. Thank you!

Regen PLIST and drop maintainership. I don't use it anymore.
 2009-02-02 11:42:13 +00:00
bernd
e260daa457 Remove the pre-generated yacc files so they will be re-build. 
This fixes a problem with gcc2. Also fix a format string.

From miod@, thanks!
 2008-10-30 15:33:59 +00:00
jasper
e073be6eab SECURITY FIX for http://secunia.com/advisories/30742/ 
(Fetchmail Large Header Processing Denial of Service)

Patch was taken from upstream advisory.
http://www.fetchmail.info/fetchmail-SA-2008-01.txt

ok bernd@ (MAINTAINER)
 2008-08-19 22:41:24 +00:00
rui
1dd81a5ac2 SECURITY: roll in a distribution patch which fixes CVE-2007-4565 
Reference: http://securitytracker.com/alerts/2007/Aug/1018627.html

ok bernd@
 2007-08-31 14:20:46 +00:00
bernd
573299d695 Security update to fetchmail-6.3.8. (CVE-2007-1558) 
Make the APOP challenge parser more distrustful and have it reject challenges
that do not conform to RFC-822 msg-id format, in the hope to make mounting
man-in-the-middle attacks (MITM) against APOP a bit more difficult.

Detailed information:
http://fetchmail.berlios.de/fetchmail-SA-2007-01.txt
 2007-04-13 13:22:25 +00:00
bernd
60d27b1449 Security update to fetchmail-6.3.6: 
A password disclosure vulnerability (CVE-2006-5867, fetchmail's using unsafe
logins or omitting TLS) and a denial of service vulnerability (CVE-2006-5974,
fetchmail crashes, dereferencing the null page, when rejecting a message sent
to an MDA).

Fetchmail 6.3.6 also fixes several regressions and long-standing bugs.

Details:
https://lists.berlios.de/pipermail/fetchmail-announce/2007-January/000042.html

tests & ok jasper@, simon@
 2007-01-09 10:35:42 +00:00
bernd
c4c1542325 Update to fetchmail-6.3.4. 2006-04-21 09:21:59 +00:00
bernd
4be38c5eef Update to fetchmail-6.3.3. 2006-04-01 11:57:44 +00:00
bernd
b0caefa3d0 Update to fetchmail-6.3.2. 
This update includes security fixes for CVE-2005-2335, CVE-2005-4348
and CVE-2006-0321.

Take over maintainership. (With permission from old MAINTAINER fgsch@.)

Tested by Sigfred Håversen and aanriot@.

ok aanriot@, brad@
 2006-01-31 14:30:34 +00:00
bernd
e339a20163 Fix the latest security issue in fetchmailconf. 
http://fetchmail.berlios.de/fetchmail-SA-2005-02.txt
"passwords are written to a world-readable file"

nicer fetchmailconf diff & ok fgsch@ (thanks!)
 2005-10-27 21:58:51 +00:00
fgsch
6c8c34dfa8 SECURITY FIX: update to 6.2.5.2, see 
http://www.vuxml.org/openbsd/aee27100-fcf2-11d9-b3c7-00065bd5b0b6.html.
Update master sites and homepage (project moved to belios.de).
From Bernd Ahlers <b dot ahlers at ba-net dot org>.
 2005-07-25 17:41:51 +00:00
alek
79c2dcee03 - Fix libintl detection 
- Don't use bundled libintl headers
- Bump PKGNAME
 2005-02-19 21:27:35 +00:00
fgsch
e24b084b33 fix apop. from alexander dot bluhm at gmx dot net via PR/3709. 
pvalchev@ ok.
 2004-03-12 00:18:42 +00:00
fgsch
55f346b834 update to 6.2.5. 2003-10-15 23:08:49 +00:00
markus
ee577057f2 out of bounds access; detected by malloc guard; ok fgsch@ 2003-09-23 20:37:51 +00:00
fgsch
b6cf2a59ca update to fetchmail 6.2.4; bugfix release. 2003-08-13 23:28:24 +00:00
fgsch
6e98edec2f SECURITY FIX: update to fetchmail 6.2.0. 2002-12-13 08:53:56 +00:00
fgsch
80f4e233fe - update to fetchmail 5.9.14. 
- remove deprecated NEED_VERSION.
- enable NTLM support as requested by Nick Nauwelaerts <nick@wanadoo.be>.
- add gettext to MODULES.
 2002-09-10 10:14:24 +00:00
fgsch
c3d0381acf update to fetchmail 5.9.12; for my chani. 2002-06-06 00:56:48 +00:00
fgsch
5a00dda6f6 make this compile again after recent openssl changes; reported by krw@ 2002-05-27 17:43:43 +00:00
fgsch
e46c584b17 argh, this should have gone as well. 2002-05-01 22:20:48 +00:00
fgsch
42eb883073 o Update to fetchmail 5.9.11. 
o bump need_version.
o remove the need for autoconf.
 2002-05-01 22:19:36 +00:00
brad
9bdc74d358 add a missing library so fetchmail links on ELF-based archs when using Kerberos. 2001-11-27 15:29:28 +00:00
fgsch
91a6d55c22 o Update to fetchmail 5.9.5. 
o Bump version.
 2001-11-12 19:24:54 +00:00
fgsch
efa7db9668 o Upgrade to fetchmail 5.9.4. 
o Remove kerberos4/5 from flavors list and use them by default.
  Suggested by Jakob Schlyter <jakob@crt.se>.
o Update diffs.
 2001-10-26 03:52:49 +00:00
fgsch
3e4cc07bfb - Update to fetchmail 5.8.11. 
- Move old kerberosIV flavor to kerberos4.
- Add kerberosV support via kerberos5 flavor.

KerberosV support is not really tested. I'm not sure if that diff is
100% correct, so I'm gonna hold a bit to submit it. Please test.
 2001-07-09 00:19:47 +00:00
brad
80a6c2ebed upgrade to fetchmail 5.8.4 2001-05-23 02:16:40 +00:00
brad
2eb135eebd upgrade to fetchmail 5.8.1 
--
Ok'd by: maintainer
 2001-04-13 20:35:49 +00:00
brad
3e025283d0 force creation of proper symlink durring post-install and remove 
unnecessary patch
 2000-07-15 07:18:01 +00:00
fgsch
0e61be7afd use dest in CONFIGURE_STYLE, thus simplifying patch-aa. 2000-07-08 08:54:01 +00:00
fgsch
1b64f3f063 Update to 5.3.8; fake; change upper to lower in comment; turan@ ok 2000-04-26 18:43:53 +00:00
fgsch
0a37e4c1e1 Update to fetchmail-5.0.5. 
Remove unnecessary patches. They're part of the regular distribution now.
Change the maintainer to myself.
 1999-06-28 19:40:45 +00:00
brad
7962ff907f upgrade to fetchmail 5.0.4 1999-06-12 23:07:44 +00:00
fgsch
b2773225d3 Update to 4.7.7. 1999-02-10 05:03:37 +00:00
fgsch
95222be495 Fix kerberos compilation; problem reported by evan.cordes@umich.edu. 1999-01-19 02:47:15 +00:00
fgsch
5c0f832830 Use the correct include directory if kerberos is wanted (still not compiling 
until I resolve the _ problem).
 1999-01-18 07:24:36 +00:00
marc
628f90635a updated to version to 4.5.8 1998-08-01 02:01:55 +00:00
marc
008225d6f3 Updated to version to 4.3.8. Required one new patch. 1998-03-01 05:40:44 +00:00
tacho
01bd9986f7 not needed 1997-12-31 11:36:18 +00:00
tacho
d18facc6bd recent changes - new versions. all work. 1997-12-31 11:34:26 +00:00
angelos
4190bb1b23 Not everyone uses opie. 1997-11-24 03:27:38 +00:00
deraadt
15d4039688 initial ports subsystem from joey 1997-11-15 00:04:24 +00:00