CVE-2019-19783, a privilege escalation vulnerability that permits creation of
arbitrary mailboxes using the 'fileinto' directive in user sieve scripts.
- cleanup and fix some ports specific stuff while here
Refer to upstream for changes and upgrade notes.
Note that altnamespace and unixhierarchysep are now on by default on, to match
the behaviour of most other IMAP servers in the world.
Merge both subpackages into one -- it made sense when the port was not
SHARED_ONLY but it's been for a while now.
Use /nonexistent for the _cyrus user homedir.
Fix the potential buffer overflow vulnerability described in CERT
VU#336053 (we already had an upstream patch for this in our 2.3.14 pkg).
This release also brings several non-critical bugfixes and feature
enhancements.
- only build_depends on mail/drac for the drac FLAVOR as the drac server
can be external
- rename drac patch
- tweak DESCR-perl and MESSAGE-main
- fix -perl packaging after perl upgrade to 5.10
- fix depends for the drac FLAVOR in the process
- add a patch from cyrus bugzilla to allow imapd.conf to contain blank lines (!)
* Added statuscache.db to cache IMAP STATUS data
* Added option to unexpunge to restore messages by time interval
* Implemented incremental squat updates (see squatter.8)
* Fixed major bugs in reconstruct -k implementation
* Added code to promote transaction safety and to track the lock status of skiplist databases
* Allow long lines in imapd.conf to be split across multiple lines by using backslash as a continuation character.
* Fixed miscellaneous bugs and build issues
... and more
* fix alignment issues
* new cyr_synclog utility for adding events to the replication log
* added support for the PCRE library
* miscellaneous bug fixes
