Commit Graph

134 Commits

Author SHA1 Message Date
bernd
e260daa457 Remove the pre-generated yacc files so they will be re-build.
This fixes a problem with gcc2. Also fix a format string.

From miod@, thanks!
2008-10-30 15:33:59 +00:00
jasper
e073be6eab SECURITY FIX for http://secunia.com/advisories/30742/
(Fetchmail Large Header Processing Denial of Service)

Patch was taken from upstream advisory.
http://www.fetchmail.info/fetchmail-SA-2008-01.txt

ok bernd@ (MAINTAINER)
2008-08-19 22:41:24 +00:00
merdely
8b76ad71d8 Remove surrounding quotes in COMMENT*/PERMIT_* 2007-09-16 00:17:04 +00:00
rui
1dd81a5ac2 SECURITY: roll in a distribution patch which fixes CVE-2007-4565
Reference: http://securitytracker.com/alerts/2007/Aug/1018627.html

ok bernd@
2007-08-31 14:20:46 +00:00
bernd
573299d695 Security update to fetchmail-6.3.8. (CVE-2007-1558)
Make the APOP challenge parser more distrustful and have it reject challenges
that do not conform to RFC-822 msg-id format, in the hope to make mounting
man-in-the-middle attacks (MITM) against APOP a bit more difficult.

Detailed information:
http://fetchmail.berlios.de/fetchmail-SA-2007-01.txt
2007-04-13 13:22:25 +00:00
espie
9eafbbfb35 base64 checksums. 2007-04-05 16:19:55 +00:00
bernd
60d27b1449 Security update to fetchmail-6.3.6:
A password disclosure vulnerability (CVE-2006-5867, fetchmail's using unsafe
logins or omitting TLS) and a denial of service vulnerability (CVE-2006-5974,
fetchmail crashes, dereferencing the null page, when rejecting a message sent
to an MDA).

Fetchmail 6.3.6 also fixes several regressions and long-standing bugs.

Details:
https://lists.berlios.de/pipermail/fetchmail-announce/2007-January/000042.html

tests & ok jasper@, simon@
2007-01-09 10:35:42 +00:00
alek
a342f505ce Use MASTER_SITE_BERLIOS 2006-08-01 18:38:22 +00:00
bernd
c4c1542325 Update to fetchmail-6.3.4. 2006-04-21 09:21:59 +00:00
bernd
4be38c5eef Update to fetchmail-6.3.3. 2006-04-01 11:57:44 +00:00
bernd
b0caefa3d0 Update to fetchmail-6.3.2.
This update includes security fixes for CVE-2005-2335, CVE-2005-4348
and CVE-2006-0321.

Take over maintainership. (With permission from old MAINTAINER fgsch@.)

Tested by Sigfred Håversen and aanriot@.

ok aanriot@, brad@
2006-01-31 14:30:34 +00:00
bernd
e339a20163 Fix the latest security issue in fetchmailconf.
http://fetchmail.berlios.de/fetchmail-SA-2005-02.txt
"passwords are written to a world-readable file"

nicer fetchmailconf diff & ok fgsch@ (thanks!)
2005-10-27 21:58:51 +00:00
sturm
0d88196840 bump PKGNAME so that 3.7 won't have higher PKGNAMEs than 3.8
suggested by espie@, ok pval@
2005-08-31 19:55:36 +00:00
fgsch
6c8c34dfa8 SECURITY FIX: update to 6.2.5.2, see
http://www.vuxml.org/openbsd/aee27100-fcf2-11d9-b3c7-00065bd5b0b6.html.
Update master sites and homepage (project moved to belios.de).
From Bernd Ahlers <b dot ahlers at ba-net dot org>.
2005-07-25 17:41:51 +00:00
alek
79c2dcee03 - Fix libintl detection
- Don't use bundled libintl headers
- Bump PKGNAME
2005-02-19 21:27:35 +00:00
naddy
a8817eabcc SIZE 2005-01-05 16:50:35 +00:00
alek
200b1ea2ea Add WANTLIB markers 2005-01-02 12:56:04 +00:00
espie
15a2aca1cd new style plists. 2004-09-15 09:09:41 +00:00
xsa
569ca0e221 new-style MODULES. 2004-08-10 09:14:47 +00:00
fgsch
e24b084b33 fix apop. from alexander dot bluhm at gmx dot net via PR/3709.
pvalchev@ ok.
2004-03-12 00:18:42 +00:00
naddy
2276d3b230 remove WWW lines 2003-12-15 21:42:08 +00:00
fgsch
55f346b834 update to 6.2.5. 2003-10-15 23:08:49 +00:00
markus
ee577057f2 out of bounds access; detected by malloc guard; ok fgsch@ 2003-09-23 20:37:51 +00:00
fgsch
b6cf2a59ca update to fetchmail 6.2.4; bugfix release. 2003-08-13 23:28:24 +00:00
fgsch
ebaf3d2b0e update to fetchmail 6.2.3. 2003-07-17 22:36:44 +00:00
fgsch
40ad228f0b no more kerberosIV stuff; reported and tested by krw. 2003-05-20 01:55:59 +00:00
fgsch
64e49b97ce update to fetchmail 6.2.2. 2003-04-04 04:34:18 +00:00
david
3e6f238637 remove double word stuttering
ok pvalchev@ brad@
2003-02-26 02:57:55 +00:00
fgsch
db76bc5a66 new MASTER_SITES and HOMEPAGE.
from by Joseph C. Bender <jcbender at benderhome dot net>.
2003-02-18 10:30:17 +00:00
fgsch
6e98edec2f SECURITY FIX: update to fetchmail 6.2.0. 2002-12-13 08:53:56 +00:00
fgsch
4d772574be Update to fetchmail 6.1.3. 2002-11-28 16:34:15 +00:00
fgsch
4d01b9259a update to fetchmail 6.1.2. 2002-11-02 20:23:34 +00:00
naddy
26e34fa97b No regression tests available. 2002-10-27 17:21:39 +00:00
fgsch
33def50a65 update to fetchmail 6.1.1. 2002-10-18 20:31:21 +00:00
brad
6260e312ef upgrade to fetchmail 6.1.0
- fixes a few buffer overflows and a broken boundary check
which could potentially lead to a remote vulnerability.

http://marc.theaimsgroup.com/?l=bugtraq&m=103340148625187&w=2
--
Ok'd by: pvalchev@
2002-09-30 16:37:14 +00:00
fgsch
1ca6914e06 update to 6.0.0. 2002-09-18 01:02:51 +00:00
fgsch
80f4e233fe - update to fetchmail 5.9.14.
- remove deprecated NEED_VERSION.
- enable NTLM support as requested by Nick Nauwelaerts <nick@wanadoo.be>.
- add gettext to MODULES.
2002-09-10 10:14:24 +00:00
fgsch
f3f55d6b52 remove kerberos* flavors; reported by Jacob Meuser <jakemsr@jakemsr.com>. 2002-07-02 05:58:00 +00:00
fgsch
7c5b7bb680 update to 5.9.13; see http://www.tuxedo.org/~esr/fetchmail/NEWS for changes. 2002-06-26 22:14:48 +00:00
fgsch
c3d0381acf update to fetchmail 5.9.12; for my chani. 2002-06-06 00:56:48 +00:00
fgsch
118d6c8644 ops, revert local change while testing. 2002-05-27 17:48:13 +00:00
fgsch
5a00dda6f6 make this compile again after recent openssl changes; reported by krw@ 2002-05-27 17:43:43 +00:00
fgsch
e46c584b17 argh, this should have gone as well. 2002-05-01 22:20:48 +00:00
fgsch
42eb883073 o Update to fetchmail 5.9.11.
o bump need_version.
o remove the need for autoconf.
2002-05-01 22:19:36 +00:00
espie
6204f82467 happy with new autoconf 2002-01-06 18:33:17 +00:00
fgsch
27e8a3e34a o update to fetchmail 5.9.6
o regenerate checksum files.
2001-12-17 21:45:49 +00:00
brad
9bdc74d358 add a missing library so fetchmail links on ELF-based archs when using Kerberos. 2001-11-27 15:29:28 +00:00
fgsch
91a6d55c22 o Update to fetchmail 5.9.5.
o Bump version.
2001-11-12 19:24:54 +00:00
fgsch
efa7db9668 o Upgrade to fetchmail 5.9.4.
o Remove kerberos4/5 from flavors list and use them by default.
  Suggested by Jakob Schlyter <jakob@crt.se>.
o Update diffs.
2001-10-26 03:52:49 +00:00
fgsch
0848fda1f6 Fetchmail 5.9.0. 2001-08-15 14:15:03 +00:00