]>
Pileus Git - ~andy/fetchmail/log
Matthias Andree [Sat, 28 Aug 2010 17:14:13 +0000 (19:14 +0200)]
Don't try to match trailing literals in sscanf,
but rather note how much input was consumed, stop short of the string, and
use strncasecmp to match explicitly.
Matthias Andree [Sat, 28 Aug 2010 17:10:23 +0000 (19:10 +0200)]
Remove dead variable/assignment.
Sunil Shetye [Fri, 30 Jul 2010 10:35:41 +0000 (16:05 +0530)]
parse response to FETCH in a more flexible manner
remove for loop in imap_fetch_headers()
Matthias Andree [Sat, 28 Aug 2010 10:36:20 +0000 (12:36 +0200)]
Add one TODO item.
Matthias Andree [Fri, 27 Aug 2010 19:40:07 +0000 (21:40 +0200)]
Bump version.
Matthias Andree [Fri, 27 Aug 2010 19:33:41 +0000 (21:33 +0200)]
Add self-test for X.509 name matching.
Matthias Andree [Fri, 27 Aug 2010 19:33:04 +0000 (21:33 +0200)]
X.509 matching split out; disallow TLD wildcards.
Matthias Andree [Fri, 27 Aug 2010 19:08:14 +0000 (21:08 +0200)]
Disallow X.509 wildcard matches in domain literals.
Matthias Andree [Fri, 27 Aug 2010 18:59:54 +0000 (20:59 +0200)]
Require that X.509 wildcards start with "*.",
rather than just "*", to make abuse harder.
Matthias Andree [Fri, 27 Aug 2010 18:51:23 +0000 (20:51 +0200)]
Factor out name/wildcard matching code.
Matthias Andree [Sat, 21 Aug 2010 13:38:16 +0000 (15:38 +0200)]
Avoid wedging Exchange 2007 with GSSAPI.
Exchange 2007 wedges if we try GSSAPI authentication and fail for lack of
suitable credentails (for instance, because the user did not run kinit).
Only try GSSAPI automatically if we have credentials.
Reported by Patrick Rynhart, Debian Bug #568455,
and Alan Murrell, to the fetchmail-users list.
Matthias Andree [Fri, 20 Aug 2010 08:46:10 +0000 (10:46 +0200)]
Decode and report GSSAPI errors in more detail.
Matthias Andree [Fri, 20 Aug 2010 08:45:10 +0000 (10:45 +0200)]
Format string fix: use %s for gen_send/gen_transact.
Matthias Andree [Wed, 4 Aug 2010 22:20:42 +0000 (00:20 +0200)]
Mention TLS/getauth timeout in NEWS
Matthias Andree [Wed, 4 Aug 2010 22:11:57 +0000 (00:11 +0200)]
Apply timeout to getauth() methods.
This is to fix detecting timeouts during TLS negotiation, which
is part of getauth() in STARTTLS-like modes.
Reported by Thomas Jarosch.
Matthias Andree [Thu, 8 Jul 2010 01:14:24 +0000 (03:14 +0200)]
Add OpenSSL acknowledgment.
Matthias Andree [Thu, 8 Jul 2010 00:59:17 +0000 (02:59 +0200)]
Mention OpenSSL link exception.
Matthias Andree [Thu, 8 Jul 2010 00:57:43 +0000 (02:57 +0200)]
Clarify GPL is v2; fix link to FSF website gnu.org.
Matthias Andree [Fri, 2 Jul 2010 01:02:29 +0000 (03:02 +0200)]
Correct typo: IMAP7 -> UTF7.
Matthias Andree [Thu, 17 Jun 2010 20:33:43 +0000 (22:33 +0200)]
Incorrect headers: Refer user to bad-header option
BerliOS Bug #17272 by Björn Voigt.
Matthias Andree [Thu, 3 Jun 2010 13:27:43 +0000 (15:27 +0200)]
Fix some rare or minor issues found with Clang 2.7 analyzer.
Matthias Andree [Wed, 2 Jun 2010 19:13:14 +0000 (21:13 +0200)]
Copy icon here for a more stable build.
Matthias Andree [Wed, 2 Jun 2010 19:12:09 +0000 (21:12 +0200)]
BSD make compatibility for asciidoc.
BSD make supports $< only in transformation rules... use them, declare
automake SUFFIXES.
Matthias Andree [Fri, 28 May 2010 08:24:45 +0000 (10:24 +0200)]
Add symlink to ASCIIDOC icons.
Matthias Andree [Fri, 28 May 2010 08:24:23 +0000 (10:24 +0200)]
Fix asciidoc invocation; also remove output on failure.
Matthias Andree [Fri, 28 May 2010 08:21:56 +0000 (10:21 +0200)]
S2.3: Note that the shift changes from +/- to &/- in MUTF-7.
Matthias Andree [Thu, 27 May 2010 08:40:10 +0000 (10:40 +0200)]
Link to Mailbox/UTF7 document in NEWS section.
Matthias Andree [Thu, 27 May 2010 08:31:17 +0000 (10:31 +0200)]
Hook Mailbox-Names-UTF7 document to build and website.
New dependency: requires asciidoc 8.
Matthias Andree [Thu, 27 May 2010 08:30:44 +0000 (10:30 +0200)]
Bump version to 1.000.
Matthias Andree [Thu, 27 May 2010 08:30:04 +0000 (10:30 +0200)]
Update.
Matthias Andree [Thu, 27 May 2010 08:25:15 +0000 (10:25 +0200)]
Add document on IMAP-Unicode for mailbox names.
Matthias Andree [Thu, 27 May 2010 07:57:24 +0000 (09:57 +0200)]
Also upload to SourceForge.
Matthias Andree [Wed, 19 May 2010 00:21:41 +0000 (02:21 +0200)]
Only report connection failures in verbose mode or if all addresses fail.
Matthias Andree [Tue, 18 May 2010 22:12:57 +0000 (00:12 +0200)]
Revise 6.3.18 bug fix entries in NEWS.
Matthias Andree [Mon, 17 May 2010 19:10:16 +0000 (21:10 +0200)]
Fix MD5* library pickup.
Avoid picking up libmd5, which fails if libwww is installed because libmd5
uses "long" rather than fixed-width types. This fails on non-32-bit machines.
Only probe libmd if md5.h is found.
To fix Gentoo Bug #319283, reported by Karl Hakimian.
Matthias Andree [Tue, 11 May 2010 08:26:14 +0000 (10:26 +0200)]
Enable Doxygen extraction.
Matthias Andree [Sun, 9 May 2010 01:18:42 +0000 (03:18 +0200)]
Omit warning of insecure connection if --sslfingerprint matches.
Fixes Debian Bug#580796 reported by Roland Stigge.
Matthias Andree [Thu, 6 May 2010 10:36:56 +0000 (12:36 +0200)]
Fix timestamp on security website.
Matthias Andree [Thu, 6 May 2010 10:06:58 +0000 (12:06 +0200)]
Ignore .rsyncs.
Matthias Andree [Thu, 6 May 2010 10:05:16 +0000 (12:05 +0200)]
Re-sign SA 2010-02.
Matthias Andree [Thu, 6 May 2010 09:13:47 +0000 (11:13 +0200)]
Fix history date in fetchmail-SA-2010-02.txt.
Matthias Andree [Thu, 6 May 2010 08:32:25 +0000 (10:32 +0200)]
Link CVE-2010-1167/fetchmail SA-2010-02.
Matthias Andree [Thu, 6 May 2010 08:25:55 +0000 (10:25 +0200)]
Update website for 6.3.17 release.
Matthias Andree [Thu, 6 May 2010 07:55:10 +0000 (09:55 +0200)]
Get ready for 6.3.17 release.
Matthias Andree [Thu, 6 May 2010 07:42:34 +0000 (09:42 +0200)]
Complete and sign fetchmail SA 2010-02.
Matthias Andree [Thu, 6 May 2010 07:38:10 +0000 (09:38 +0200)]
Bump version to 6.3.17.
Matthias Andree [Thu, 6 May 2010 07:37:36 +0000 (09:37 +0200)]
Add import-translations target.
Matthias Andree [Thu, 6 May 2010 07:37:21 +0000 (09:37 +0200)]
Update Chinese (simplified) translation, Ji Zheng-Yu.
Matthias Andree [Wed, 5 May 2010 22:29:03 +0000 (00:29 +0200)]
Update translations.
Matthias Andree [Thu, 29 Apr 2010 19:19:38 +0000 (21:19 +0200)]
Hack types for cygwin_read().
Matthias Andree [Thu, 29 Apr 2010 18:53:46 +0000 (20:53 +0200)]
#include "config.h" before string[s].h, to fix Solaris symbol exposure.
Matthias Andree [Thu, 29 Apr 2010 18:49:29 +0000 (20:49 +0200)]
#include <strings.h> for strncasecmp.
Matthias Andree [Thu, 29 Apr 2010 18:46:27 +0000 (20:46 +0200)]
Check fwrite return values, to silence linker warnings.
Matthias Andree [Thu, 29 Apr 2010 18:41:32 +0000 (20:41 +0200)]
Properly use long to map pid_t.
Matthias Andree [Thu, 29 Apr 2010 18:16:45 +0000 (20:16 +0200)]
Also run Kerberos errors through sdump().
This allows us to get rid of the %*s/%s difference between Heimdal/MIT
Kerberos translations, and prevents from server-provided data to be dumped
directly on screen.
Matthias Andree [Thu, 29 Apr 2010 09:01:52 +0000 (11:01 +0200)]
Properly parenthesize DBG_FWRITE macro.
Matthias Andree [Thu, 29 Apr 2010 18:38:17 +0000 (20:38 +0200)]
On xmalloc/xrealloc failures, abort() rather than exit(PS_UNDEFINED).
Matthias Andree [Thu, 29 Apr 2010 08:44:44 +0000 (10:44 +0200)]
Fix two warning: the address of * will always evaluate as 'true'.
Matthias Andree [Thu, 29 Apr 2010 01:49:37 +0000 (03:49 +0200)]
Fix gethostbyname_r argument count detection, ...
...those that use NULL will now also #include <stdlib.h>.
Matthias Andree [Thu, 29 Apr 2010 01:22:36 +0000 (03:22 +0200)]
Fix autoconf warning, rename variable to allow caching.
Matthias Andree [Thu, 29 Apr 2010 01:19:54 +0000 (03:19 +0200)]
Move gethostbyname_r.m4 to m4-local directory where it belongs.
It's not supposed to be updated by autopoint.
Matthias Andree [Thu, 29 Apr 2010 00:11:27 +0000 (02:11 +0200)]
Document apparent glibc relation of CVE-2010-1167.
Matthias Andree [Wed, 28 Apr 2010 23:44:27 +0000 (01:44 +0200)]
Tighter error checking on write_saved_lists().
Matthias Andree [Tue, 27 Apr 2010 16:12:44 +0000 (18:12 +0200)]
Add Red Hat Bug #503881 to the fix list in 6.3.9 sslproto fix.
Matthias Andree [Tue, 27 Apr 2010 07:50:55 +0000 (09:50 +0200)]
Fix a few Intel C++ remarks and warnings.
Matthias Andree [Tue, 27 Apr 2010 07:48:55 +0000 (09:48 +0200)]
Report unknown ODMR error in full, escaping unprintables.
Matthias Andree [Sat, 24 Apr 2010 04:35:53 +0000 (06:35 +0200)]
Remove debian/ and other cruft.
Matthias Andree [Sat, 24 Apr 2010 03:09:18 +0000 (05:09 +0200)]
Make count_list iterative, to save function call overhead.
Matthias Andree [Sat, 24 Apr 2010 04:13:02 +0000 (06:13 +0200)]
Improve UID list debug logging.
Print lists regardless of .uidl setting.
Decode marks.
Matthias Andree [Sat, 24 Apr 2010 02:05:16 +0000 (04:05 +0200)]
Validate STAT response more strictly.
Matthias Andree [Sat, 24 Apr 2010 00:41:33 +0000 (02:41 +0200)]
Update Doxyfile.
Matthias Andree [Sat, 24 Apr 2010 00:36:30 +0000 (02:36 +0200)]
Split string list stuff from uid.c into new idlist.c.
Matthias Andree [Sat, 24 Apr 2010 00:17:26 +0000 (02:17 +0200)]
Complete Doxygen documentation of uid.c and related definitions.
Matthias Andree [Sat, 24 Apr 2010 04:14:17 +0000 (06:14 +0200)]
Note search.h ideas for UID.
Matthias Andree [Sat, 24 Apr 2010 04:08:30 +0000 (06:08 +0200)]
Update.
Matthias Andree [Sat, 24 Apr 2010 04:00:38 +0000 (06:00 +0200)]
SECURITY FIX (one missed): DoS on EILSEQ in report_*() in -vv and multibyte-locales.
Matthias Andree [Thu, 22 Apr 2010 23:40:04 +0000 (01:40 +0200)]
--sslcert{file|path} overrides default store, add environment var...
If at least one of --sslcertfile and --sslcertpath is given, fetchmail
skips loading the default OpenSSL X.509 trusted CA cert locations.
If the environment variable FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS is set
to a non-empty value, fetchmail will additionally load the default locations.
The old FETCHMAIL_NO_DEFAULT_X509_PATHS variable was dropped.
Matthias Andree [Thu, 22 Apr 2010 20:47:14 +0000 (22:47 +0200)]
Credit Michael Barnack for fetchmailconf fix in
083d202 .
Michael Banack [Thu, 22 Apr 2010 19:35:57 +0000 (12:35 -0700)]
Fixed set invisible bug in fetchmailconf.py
Previously it was not saving the preference at all.
Matthias Andree [Tue, 20 Apr 2010 08:10:31 +0000 (10:10 +0200)]
Add CVE name. Fix Type: (spotted by Florian Weimer.)
Matthias Andree [Mon, 19 Apr 2010 08:12:31 +0000 (10:12 +0200)]
Add a note that security announcements may appear before releases.
Matthias Andree [Mon, 19 Apr 2010 08:08:24 +0000 (10:08 +0200)]
Update and move KNOWN BUGS AND WORKAROUNDS section in NEWS.
Matthias Andree [Sun, 18 Apr 2010 18:22:27 +0000 (20:22 +0200)]
Add --sslcertfile option and FETCHMAIL_NO_DEFAULT_X509_PATHS env var,
and always load the default X.509 trust stores, unless the latter is set.
Matthias Andree [Sun, 18 Apr 2010 16:39:05 +0000 (18:39 +0200)]
Update German translation.
Matthias Andree [Sun, 18 Apr 2010 16:38:21 +0000 (18:38 +0200)]
Bump version.
Matthias Andree [Sun, 18 Apr 2010 16:01:38 +0000 (18:01 +0200)]
SECURITY FIX: DoS on EILSEQ in report_*() in -vv and multibyte-locales.
Matthias Andree [Sun, 18 Apr 2010 15:05:21 +0000 (17:05 +0200)]
Factor out stdarg.h-based common code from report_build and _complete to _vbuild.
Note: varargs.h and non-*args.h stuff is untested.
Matthias Andree [Sun, 18 Apr 2010 14:54:33 +0000 (16:54 +0200)]
Fix MD5Digest prototype and remove unneeded type casts.
Matthias Andree [Thu, 15 Apr 2010 00:38:05 +0000 (02:38 +0200)]
Improve SSL error messages for common issues
Matthias Andree [Tue, 13 Apr 2010 13:32:27 +0000 (15:32 +0200)]
Add a prominent pointer to c_rehash and FAQ #R14.
Michael Banack [Mon, 12 Apr 2010 22:29:50 +0000 (00:29 +0200)]
Consistently call SETSTATE rather than BEGIN.
Michael Banack [Sun, 11 Apr 2010 02:07:44 +0000 (19:07 -0700)]
Added files left over from make distclean to .gitignore
Matthias Andree [Mon, 12 Apr 2010 22:08:32 +0000 (00:08 +0200)]
Mention c_rehash requirement after OpenSSL upgrades.
Matthias Andree [Mon, 12 Apr 2010 22:41:32 +0000 (00:41 +0200)]
Add memory leak item. Request --sslcertfile feature.
Matthias Andree [Mon, 12 Apr 2010 17:24:28 +0000 (19:24 +0200)]
Add R14 on c_rehash /certs/ after upgrade to OpenSSL 1.0.0.
Matthias Andree [Mon, 12 Apr 2010 07:04:38 +0000 (09:04 +0200)]
Plug parser memory leaks, avoid re-strdup'ing strings.
Independently, a nearly identical change was proposed by Michael Banack.
Matthias Andree [Mon, 12 Apr 2010 07:52:19 +0000 (09:52 +0200)]
Semi-plug memory leak when using default rcfile entry.
Does not free all members of struct query, but just servername and
the query node itself. Add a FIXME note.
Matthias Andree [Sat, 10 Apr 2010 16:16:11 +0000 (18:16 +0200)]
Remove static string buffers, use xstrndup().
Matthias Andree [Mon, 12 Apr 2010 06:54:28 +0000 (08:54 +0200)]
Call endpwent().
Matthias Andree [Sat, 10 Apr 2010 15:49:23 +0000 (17:49 +0200)]
Add xstrndup().