if a port needs 2.x then set MODPY_VERSION=${MODPY_DEFAULT_VERSION_2}.
This commit doesn't change any versions currently used; it may be that
some ports have MODPY_DEFAULT_VERSION_2 but don't require it, those
should be cleaned up in the course of updating ports where possible.
Python module ports providing py3-* packages should still use
FLAVOR=python3 so that we don't have a mixture of dependencies some
using ${MODPY_FLAVOR} and others not.
We package 0.8.3 05-Apr-2012 but 0.8.4 in 13-Jul-2013 and 0.8.5 in
08-Oct-2018 were released; the release tarball's NEWS file states
"changes to make it compile with newer g++ and libcrypto" and
"Manually parse /etc/resolv.conf, rather than attempting to make use of the
res data structure (which at least on OpenBSD no longer actually contains
the addresses of resolvers)".
This port fails to build with "-fno-common" and noone has spoken up on
ports@ to fix and update it.
PS: http://www.mailavenger.org/NEWS is sitll missing 0.8.5 changes, so
best look at the actual tarball.
OK gnezdo
Fixes CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB in
particular, '..' in the name could be used to escape the Path/Inbox of a
Maildir Store, which could be exploited for stealing or deleting data,
or staging a (mild) DoS attack.
OK kn@ (maintainer)
We package 0.8.3 05-Apr-2012 but 0.8.4 in 13-Jul-2013 and 0.8.5 in
08-Oct-2018 were released; the release tarball's NEWS file states
"changes to make it compile with newer g++ and libcrypto" and
"Manually parse /etc/resolv.conf, rather than attempting to make use of the
res data structure (which at least on OpenBSD no longer actually contains
the addresses of resolvers)".
This port fails to build with "-fno-common" and noone has spoken up on
ports@ to fix and update it.
PS: http://www.mailavenger.org/NEWS is sitll missing 0.8.5 changes, so
best look at the actual tarball.
Unhook now and give it a few days grace period before actual removal.
OK gnezdo for sending it to the attic
From FreeBSD via David Goerger < david at goerger dot info > who kindly
submitted the patch to what appears to be the new upstream on gitlab.
See https://marc.info/?l=mlmmj&m=161122707912991&w=2 for a discussion about
upstream.
does string processing on what is often untrusted input, so this seems
a good candidate for defensive use of pledge (allowing all file io,
as it creates temporary files at various points during run, but has
no need for network).
pledge() is often not a good match for software in ports, but this seems
a suitable candidate and it changes very infrequently so doesn't add a
big maintenance burden.
looks good to deraadt, ok semarie@
net/samba is the only consumer requiring Python bindings, so this split
enables all other consumers (netatalk3, neomutt, fdm, rhythmbox, pulseaudio)
to avoid the dependency on Python 2.
Bump all consumers due to tdb's PKGPATH change.
Wanted by many
Feedback OK jca sthen
It fixes a possible SMTP buffer overflow triggerable by
a malicious server as reported by Olav Mørkrid, and a socket code
memory access error that can be seen when using IMAP on at least
Solaris, which was reported by Jörg Schilling.
- remove message blacklist functionality used during maildir traversal
- remove support for the sync option used with maildir
- add isdirectory matcher, evalutes to true if the path refers to an existing
directory
- best effort reduction of side effects when moving a message fails
- check for presence of TAILQ_END during configure, this macro is not present on
macOS
* mcom: allow tilde prefixed path for profile's outbox setting
* mcom: detect and report mmime errors
* add contrib/mmailto, a handler for mailto: links
* Bug fixes.
Ship contrib/ which provides a bunch of potentially useful scripts.
From Luas (maintainer)
