Let distcheck call configure --with-ssl.

[~andy/fetchmail] / NEWS

diff --git a/NEWS b/NEWS
index 0896aa2c92e2878362ff9e1c30a7dd8d52c111dc..d78cdcfd1a026ce2f68e651396ff58b3d2f2e96e 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -56,14 +56,26 @@ removed from a 6.4.0 or newer release.)
 
 --------------------------------------------------------------------------------
 
-fetchmail-6.3.24 (not yet released):
+fetchmail-6.3.24 (released 2012-12-23, 26108 LoC):
 
 # NOTE THAT THE RELEASE OF FUTURE FETCHMAIL 6.3.X VERSIONS IS UNCLEAR.
 Should a 7.0 release be made earlier, chances are that the 6.3.X branch
 is abandoned and its changes be folded into the 7.0 release, with changes
 after 6.3.24 not available on their own in a newer 6.3.X release.
 
-# REGRESSION FIX
+# NOTE THAT FETCHMAIL IS NO LONGER PUBLISHED THROUGH IBIBLIO.
+  They have stopped accepting submissions and consider themselves an archive.
+
+# CRITICAL AND REGRESSION FIXES
+* Plug a memory leak in OpenSSL's certificate verification callback.
+  This would affect fetchmail configurations running with SSL in daemon mode
+  more than one-shot runs.
+  Reported by Erik Thiele, and pinned by Dominik Heeg,
+  fixes Debian Bug #688015.
+  This bug was introduced into fetchmail 6.3.0 (committed 2005-10-29)
+  when support for subjectAltName was added through a patch by Roland
+  Stigge, submitted as Debian Bug#201113.
+
 * The --logfile option now works again outside daemon mode, reported by Heinz
   Diehl. The documentation that I had been reading was inconsistent with the
   code, and only parts of the manual page claimed that --logfile was only