From dd5c15ff3fa5a89e90c199cbc77e1e015ec7ac0d Mon Sep 17 00:00:00 2001 From: Matthias Andree Date: Fri, 12 Feb 2010 09:54:07 +0000 Subject: [PATCH] Update to new upstream release 6.3.14. Changes: # SECURITY FIXES * SSL/TLS certificate information is now also reported properly on computers that consider the "char" type signed. Fixes malloc() buffer overrun. Workaround for older versions: do not use verbose mode. CVE-2010-0562 See fetchmail-SA-2010-01.txt for details, including a minimal patch. # BUG FIXES * The IMAP client no longer skips messages from several IMAP servers including Dovecot if fetchmail's "idle" is in use. Causes were that fetchmail (a) ignored some untagged responses when it should not (b) relied on EXISTS messages in response to EXPUNGE, which aren't mandated by RFC-3501 (the IMAP standard) and aren't sent by Dovecot either. Fix by Sunil Shetye (the fix also consolidates IMAP response handling, improving overall robustness of the IMAP client), bug report and testing by Matt Doran, with further hints from Timo Sirainen. * The SMTP client now recovers from errors (such as servers dropping the connection after errors) when sending an RSET command. Fix by Sunil Shetye. Report by James Moe. * The IMAP client now uses "SEARCH UNSEEN" rather than "SEARCH UNSEEN NOT DELETED" again on IMAP2, to fix a regression in fetchmail 6.2.5 reported by Will Stringer in June 2004. (Sunil Shetye) * The IMAP client now uses "SEARCH UNSEEN UNDELETED" on IMAP4 and IMAP4r1 servers (Sunil Shetye). * Workaround: The IMAP client now falls back to "FETCH n:m FLAGS" if the server does not support "SEARCH". (Sunil Shetye) * The IMAP client now requests message numbers in batches of 1,000 to avoid problems if there are more than 1860 unseen messages. (Sunil Shetye) Note that this wasn't security relevant because fetchmail would only read up to the maximum buffer size and leave the remainder of the string unread, going out of synch afterwards. * Stricter validation of IMAP responses containing byte or message counts. # CHANGES * Only include gssapi.h if we're not including gssapi/gssapi.h, to fix a FreeBSD compiler warning about gssapi.h being obsolete. # DOCUMENTATION * The README.SSL document was revised for grammar, spelling, and clarity. Courtesy of Robert Mullin. # TRANSLATION UPDATES * [it] Italian, by Vincenzo Campanella ---------- Approved by: Corey Halpin (port maintainer) Approved by: miwi@ (mentor) --- mail/fetchmail/Makefile | 2 +- mail/fetchmail/distinfo | 6 +++--- mail/fetchmail/files/patch-configure | 11 ----------- 3 files changed, 4 insertions(+), 15 deletions(-) delete mode 100644 mail/fetchmail/files/patch-configure diff --git a/mail/fetchmail/Makefile b/mail/fetchmail/Makefile index f423bdffdda5..fd6fff63d852 100644 --- a/mail/fetchmail/Makefile +++ b/mail/fetchmail/Makefile @@ -10,7 +10,7 @@ # want fetchmailconf to work, define WITH_X11 PORTNAME= fetchmail -PORTVERSION= 6.3.13 +PORTVERSION= 6.3.14 CATEGORIES= mail ipv6 MASTER_SITES= ${MASTER_SITE_BERLIOS} \ http://homepages.uni-paderborn.de/mandree/fetchmail/:ma \ diff --git a/mail/fetchmail/distinfo b/mail/fetchmail/distinfo index 01536d98bc9f..cab2e42a09d0 100644 --- a/mail/fetchmail/distinfo +++ b/mail/fetchmail/distinfo @@ -1,3 +1,3 @@ -MD5 (fetchmail-6.3.13.tar.bz2) = db792fb311bc358e95ed0437389269ac -SHA256 (fetchmail-6.3.13.tar.bz2) = 206a299f7ced9d7359621cc8e590a22f9cfc9c713696474e2119a1340c2e98ee -SIZE (fetchmail-6.3.13.tar.bz2) = 1614718 +MD5 (fetchmail-6.3.14.tar.bz2) = 86d3cfbce151881d8bf76a1efd5bda6a +SHA256 (fetchmail-6.3.14.tar.bz2) = 8657f786f5af1857ddb3b50203e6cde2efad43f49828973cbb22f6d431208607 +SIZE (fetchmail-6.3.14.tar.bz2) = 1621188 diff --git a/mail/fetchmail/files/patch-configure b/mail/fetchmail/files/patch-configure deleted file mode 100644 index 5ff84c46207a..000000000000 --- a/mail/fetchmail/files/patch-configure +++ /dev/null @@ -1,11 +0,0 @@ ---- configure.orig 2009-10-30 10:40:08.971594149 +0100 -+++ configure 2009-10-30 10:40:19.438656862 +0100 -@@ -14747,7 +14747,7 @@ - _ACEOF - - if test "$with_gssapi" != yes ; then -- CPPFLAGS="$CPPFLAGS-I$with_gssapi/include" -+ CPPFLAGS="$CPPFLAGS -I$with_gssapi/include" - fi - -