Accepted fetchmail 6.3.6~rc3-1 (source i386 all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 23 Nov 2006 11:35:01 +0100
Source: fetchmail
Binary: fetchmailconf fetchmail
Architecture: source i386 all
Version: 6.3.6~rc3-1
Distribution: unstable
Urgency: medium
Maintainer: Fetchmail Maintainers <pkg-fetchmail-maint@lists.alioth.debian.org>
Changed-By: Hector Garcia <hector@debian.org>
Description:
fetchmail - SSL enabled POP3, APOP, IMAP mail gatherer/forwarder
fetchmailconf - fetchmail configurator
Closes: 294547 361825 376603 377135 391698 398160
Changes:
fetchmail (6.3.6~rc3-1) unstable; urgency=medium
.
[New upstream version]
* sslproto keywords are now case insensitive
* In verbose mode, log every IP fetchmail tries to connect to, to avoid
misleading the user. Suppress EAFNOSUPPORT errors from socket() call, too.
(Closes: #361825)
* Track getaddrinfo() results to properly free them after timeouts and
make sure that getaddrinfo() isn't interrupted by a timeout.
(Closes: #294547, #377135).
* If the lockfile ends before the process ID, treat it as stale and unlink it.
Reported by Justin Pryzby, (Closes: #376603).
* SECURITY FIX (CHANGES BEHAVIOR):
Using at least one of the options "sslproto 'tls1'", "sslfingerprint" or
"sslcertck" enforces STARTTLS for POP3 and IMAP and terminates the connection
if unsuccessful. The same configuration causes permanent connection failure
with POP2, which is obsolete and does not support STLS. fetchmail 6.3.5 and
older had no way to enforce TLS. With those older versions, TLS was always
opportunistic, but fetchmail would happily transmit the password in cleartext
if STARTTLS failed. Reported by and fixed in cooperation with Isaac Wilcox.
Configurations using --ssl --sslcertck however have been safe.
.
[Nico Golde]
* Source-Version is deprecated, using source:Version now,
thanks Tolimar for the hint.
* Added colons in init to fit debian-policy
section 9.4 (Closes: #398160).
* Changed awaken call to restart cause of DNS problems (Closes: #391698).
* Added NEWS entry to inform about behaviour changes.
* Added XS-Vcs-Svn field to control file.
* Added debian/pycompat file.
* Updated debhelper dependency to version (>= 5.0.37.2) because of dh_python
call.
[Hector Garcia]
* Changed depend of fetchmailconf to >= instead of =, to
be able to do binary rebuilds.
* Migrated from dpatch to quilt.
* Removed 02_ja.po-fix, no longer needed.
* Removed 03_imap_experimental. Included upstream.
* Removed 04_eof_fix. Included upstream.
Files:
65a715172e5f79d4363f6472ced32a18 885 mail optional fetchmail_6.3.6~rc3-1.dsc
16e3d5e5436a317bf70173a1e5d13863 1659659 mail optional fetchmail_6.3.6~rc3.orig.tar.gz
26b32e50a5489ce43a0a1f8942edc4dc 43858 mail optional fetchmail_6.3.6~rc3-1.diff.gz
9fda49ba199f7d038491f3c2776d9586 60784 mail optional fetchmailconf_6.3.6~rc3-1_all.deb
e69511352365629d0b34d2b47e555b05 617976 mail optional fetchmail_6.3.6~rc3-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFZXtrMwsDi2xjdG0RAiEkAJ407jpqDgH4ywJ968EwPxD3nuNPXQCfTuli
o56pE1nnXb06oB5IL31mgXc=
=cUY4
-----END PGP SIGNATURE-----
Accepted:
fetchmail_6.3.6~rc3-1.diff.gz
to pool/main/f/fetchmail/fetchmail_6.3.6~rc3-1.diff.gz
fetchmail_6.3.6~rc3-1.dsc
to pool/main/f/fetchmail/fetchmail_6.3.6~rc3-1.dsc
fetchmail_6.3.6~rc3-1_i386.deb
to pool/main/f/fetchmail/fetchmail_6.3.6~rc3-1_i386.deb
fetchmail_6.3.6~rc3.orig.tar.gz
to pool/main/f/fetchmail/fetchmail_6.3.6~rc3.orig.tar.gz
fetchmailconf_6.3.6~rc3-1_all.deb
to pool/main/f/fetchmail/fetchmailconf_6.3.6~rc3-1_all.deb
Reply to: