diff options
| author | Matthias Andree <matthias.andree@gmx.de> | 2005-10-01 01:44:20 +0000 |
|---|---|---|
| committer | Matthias Andree <matthias.andree@gmx.de> | 2005-10-01 01:44:20 +0000 |
| commit | e37ceb2c1e57abd1224468ce4381cdc117820cd3 (patch) | |
| tree | 1add0bc74252dc2abaa98d2937b873ce6a529bcd | |
| parent | f92c0c9bcd478720f60e0559b2f6d3eb5ad1fee6 (diff) | |
| download | fetchmail-e37ceb2c1e57abd1224468ce4381cdc117820cd3.tar.gz fetchmail-e37ceb2c1e57abd1224468ce4381cdc117820cd3.tar.bz2 fetchmail-e37ceb2c1e57abd1224468ce4381cdc117820cd3.zip | |
update.
svn path=/trunk/; revision=4358
| -rw-r--r-- | NEWS | 5 |
1 files changed, 5 insertions, 0 deletions
@@ -12,6 +12,9 @@ fetchmail 6.3.0 (not yet released officially): than 128 bytes can corrupt fetchmail's stack and crash fetchmail. This vulnerability is remotely exploitable to inject code run in a root shell. This is tracked under the CVE Name: CAN-2005-2335 +* fetchmailconf now changes the output file to mode 0600 BEFORE writing to it, + so there is no window where passwords could be read by the world. + Matthias Andree. # MAJOR INCOMPATIBLE CHANGES * Remove support for --netsec/-T options, the required inet6_apps library is no @@ -224,6 +227,8 @@ fetchmail 6.3.0 (not yet released officially): authentication failure. Found by Yves Boisjoly. Matthias Andree * fetchmailconf now allows expert users to choose the authorization type and also offers MSN and NTLM, suggested by Yves Boisjoly. Matthias Andree +* fetchmailconf now (as of 1.49) writes its version to the comment of the + saved run control file. Matthias Andree # INTERNAL CHANGES * Switched to automake. Matthias Andree. |