diff options
| author | Eric S. Raymond <esr@thyrsus.com> | 2001-08-10 19:03:23 +0000 |
|---|---|---|
| committer | Eric S. Raymond <esr@thyrsus.com> | 2001-08-10 19:03:23 +0000 |
| commit | b2e8fd732ce5e827b86f659bf7f93c5543c8ad78 (patch) | |
| tree | 26efb5cca8141ed857dbb2c8320fa4e6ae4d21bc /NEWS | |
| parent | bc50723b35477d6d8e8305c7180762d89813dccd (diff) | |
| download | fetchmail-b2e8fd732ce5e827b86f659bf7f93c5543c8ad78.tar.gz fetchmail-b2e8fd732ce5e827b86f659bf7f93c5543c8ad78.tar.bz2 fetchmail-b2e8fd732ce5e827b86f659bf7f93c5543c8ad78.zip | |
Ready to ship.
svn path=/trunk/; revision=3452
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 11 |
1 files changed, 7 insertions, 4 deletions
@@ -2,12 +2,15 @@ (The `lines' figures total .c, .h, .l, and .y files under version control.) +* Blush...# characters now go to stdout, same place as the dots. +* Matthias Andree's patch to correct parsing of spaces in quoted usernames. + fetchmail-5.8.17 (Tue Aug 7 20:05:36 EDT 2001), 21056 lines: -* SECURITY FIX: Fixed a security hole that is exploitable if fetchmail is - running as root and the attacker can either subvert the mailserver or - redirect to a fake one using DNS spoofing. Bugtraq announcement to follow - soon. Thanks to Salvatore Sanfilippo <antirez@invece.org>. +* SECURITY FIX: Fixed a security hole that is exploitable if the attacker can + either subvert the mailserver or redirect to a fake one using DNS spoofing. + Bugtraq announcement to follow soon. Thanks to Salvatore Sanfilippo + <antirez@invece.org>. * Eliminated second bounce on failed RCPT TO address. * Always use fetchmail host's FQDN to identify the daemon when sending bounce messages. |