aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add new gai.c debug source.Matthias Andree2013-02-032-0/+47
|
* Let distcheck call configure --with-ssl.Matthias Andree2013-01-041-0/+3
|
* Update website for 6.3.24.Matthias Andree2012-12-231-8/+7
|
* Sign .xz; upload to sf.net; upload .xz to local site.Matthias Andree2012-12-231-3/+25
|
* Update for 6.3.24 release.Matthias Andree2012-12-2323-4738/+4738
|
* Remove LSM-related stuff from the distribution.Matthias Andree2012-12-237-48/+6
| | | | | | | IBiblio no longer accepts submissions, and considers itself an archive. There is no point in our carrying forward any related material, if needed for reference purposes, it can be fetched from older versions in the Git repository.
* Fix version to 6.3.0.Matthias Andree2012-12-141-1/+1
|
* Complete Dominik's name.Matthias Andree2012-12-141-1/+2
|
* Plug a memory leak in OpenSSL's certificate verification callback.Matthias Andree2012-12-132-2/+10
| | | | | | | | | | | This would affect fetchmail configurations running with SSL in daemon mode more than one-shot runs. Reported by Erik Thiele, and pinned by Dominik, Debian Bug #688015. This bug was introduced into fetchmail 6.2.9 (committed 2005-10-29) when support for subjectAltName was added through a patch by Roland Stigge, submitted as Debian Bug#201113.
* Repair --logfile regression of 6.3.23,Matthias Andree2012-12-134-30/+40
| | | | reported by Heinz Diehl.
* Update for new release.Matthias Andree2012-12-101-9/+9
|
* Release 6.3.23.Matthias Andree2012-12-1025-3314/+3666
|
* Pull in translation updates for 6.3.23,Matthias Andree2012-12-108-1740/+1895
| | | | dubbed 6.3.22.2 for translation purposes.
* Move forward to prepare a 6.3.23 release and request translation.Matthias Andree2012-12-053-3/+8
|
* Update German translation.Matthias Andree2012-12-051-225/+246
|
* Fix typo in R15, and clarify.Matthias Andree2012-11-061-4/+5
|
* Fix typo repsonsible -> responsible.Matthias Andree2012-11-061-1/+1
|
* Make Maillennium POP3 workarounds less specific,Matthias Andree2012-10-142-2/+7
| | | | | to encompass Maillennium POP3/UNIBOX (Maillennium V05.00c++). Reported by Eddie via fetchmail-users mailing list, 2012-10-13.
* Clean up logfile vs. syslog handling.Matthias Andree2012-09-233-14/+48
| | | | | In case logfile overrides syslog, send a message to the latter stating where logging goes. Also revise manual page.
* fix another typo, point one URL to CVE.Matthias Andree2012-09-041-2/+6
|
* Fix typo in CVE URLs that rendered two new links useless.Matthias Andree2012-09-041-2/+2
|
* Obsoletion warning.Matthias Andree2012-09-031-0/+5
|
* Mention Alexander's fix for -f - with --plugin.Matthias Andree2012-09-031-0/+4
|
* Fix: combination of --plugin and -f - failsAlexander Zangerl2012-09-031-1/+2
| | | | | | | | | | | | | | | | | | | | | | scenario: you want to remote-control fetchmail, but you don't want to write passwords into files, so you feed fetchmail a minimal rcfile via stdin with -f -. this by itself works fine. if you also want or need to use a --plugin (eg. socat for socks), then things fail badly: the plugin is run without a stdin fd, hence can't take input from fetchmail, lots of fun ensues. plugins without -f - work fine, it's just the combination that fails. explanation: the root cause is rcfile_y.y, line 493, which closes whatever fd carried the rcfile. with -f - this closes fetchmail's stdin - and so far that's unproblematic. however, in socket.c lines 166ff things go wrong: fetchmail sets up the plugin with a socketpair, which will likely include the first unused fd - and fd zero is now indeed unused. in line 180ff a dup2 replumbing from "that fd" (=zero) to zero is performed - and then "that fd" is closed. and hey presto, we've got no fd zero = stdin for the plugin. solution: the simplest solution (patch attached) is to make the fclose of the rcfile conditional, ie. don't close if it's stdin. in the long run the dup2+close code might be made more robust by not doing a dup2+close if fd[0] is already 0 or 1.
* Note Earl's regression fix for SSL_CTX_clear_options() on older OpenSSL.Matthias Andree2012-09-031-0/+9
|
* Clear SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS without SSL_CTX_clear_options()Earl Chew2012-09-031-3/+4
| | | | | | | | | | | | A patch to clear SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS was added recently: http://gitorious.org/fetchmail/fetchmail/commit/48809c5b9f6c9081f4031fa938dd63b060c18a4b?format=patch Older implementations of OpenSSL do not support SSL_CTX_clear_options(). This patch reworks the previous change to avoid the use of SL_CTX_clear_options() and instead clears the corresponding bit in SSL_OP_ALL before calling SSL_CTX_set_options().
* Update security info on web site.Matthias Andree2012-08-303-1/+15
|
* Update copyright and SecAnn' version.Matthias Andree2012-08-303-7/+7
|
* Update.Matthias Andree2012-08-291-4/+4
|
* Get ready for 6.3.22 release.Matthias Andree2012-08-2921-2086/+2100
|
* Update translations and NEWS.Matthias Andree2012-08-204-998/+1194
|
* Warn if SSL is disabled, suggest --with-ssl.Matthias Andree2012-08-172-1/+5
|
* Fix installation when PYTHON is enabled.Matthias Andree2012-08-172-7/+4
| | | | | | The Python-related Makefile.am parts were simplified to avoid an automake 1.11.X bug around noinst_PYTHON, Automake Bug #10995. http://lists.gnu.org/archive/html/automake-patches/2012-03/txtbYNp7SPawU.txt
* GSSAPI build fix.Matthias Andree2012-08-153-6/+19
| | | | | | The GSSAPI-related autoconf code now matches gssapi.c better, and uses a different check to look for GSS_C_NT_HOSTBASED_SERVICE. This fixes the GSSAPI-enabled build on NetBSD 6 Beta.
* Update translations.Matthias Andree2012-08-154-483/+517
|
* Correct title/topic, remove dates (6.3.22 isn't out yet), and re-sign.Matthias Andree2012-08-151-9/+9
|
* Fix compiler warnings.Matthias Andree2012-08-141-4/+8
|
* Fix compiler aliasing warning.Matthias Andree2012-08-142-16/+19
|
* Fix length argument to memset().Matthias Andree2012-08-141-1/+1
|
* Validate NTLM challenge fields.Matthias Andree2012-08-144-18/+47
| | | | | This is to avoid reading from bad locations, and possibly conveying confidential data. Credit to Nico Golde.
* Add CVE-Id and sign.Matthias Andree2012-08-141-1/+12
|
* rewordMatthias Andree2012-08-131-2/+3
|
* Add new Swedish translation, by Göran Uddeborg.Matthias Andree2012-08-133-1/+3182
|
* Fix advisory no. in header.Matthias Andree2012-08-131-1/+1
|
* Reformat, inserting blank line.Matthias Andree2012-08-131-0/+1
|
* Document fix for NTLM crash, + Security advisory (draft).Matthias Andree2012-08-133-1/+109
|
* Update German translation.Matthias Andree2012-08-131-84/+93
|
* Fix crash: Handle invalid base64 in NTLM challenge.Matthias Andree2012-08-131-1/+8
| | | | | | | | | | | | | | Some servers, for instance the MS Exchange servers deployed by the US-American National Aeronautics and Space Administration (NASA), aborted the NTLM protocol exchange after receiving the initial request. Fetchmail did not detect that there was an error message, rather than NTLM protocol exchange, and caught a segmentation fault while reading from a bad location. Detect base64 decoding errors, and return PS_AUTHFAIL in this case. Reported by J[ames] Porter Clark.
* Document license change in CHANGES.Matthias Andree2012-08-021-1/+5
|
* Properly erase MD5Context in MD5Final.Matthias Andree2012-05-311-1/+1
| | | | Found by clang.
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-26 14:09:42 +0000