lp:ubuntu/feisty-security/fetchmail
- Get this branch:
- bzr branch lp:ubuntu/feisty-security/fetchmail
Branch merges
Branch information
Recent revisions
- 18. By Jamie Strandboge
-
* SECURITY UPDATE: DoS via NULL pointer dereference when SMTP refuses to
send certain warning messages
* added 02_CVE-2007-4565. patch to sink.c to verify msg is not NULL
* SECURITY UPDATE: Due to a design flaw in the APOP protocol, remote
attackers may be able to acquire a portion of a user's authentication
credentials using man-in-the-middle techniques.
* added 03_CVE-2007-1558. patch. This patch adds notes about APOP's
limitations as well as updating pop3.c to more strictly validate the
presented challenge for RFC-822 conformity. This change to pop3.c does
not fix the APOP design flaw, but does make attacks against APOP somewhat
more difficult.
* added 04_manpage.patch for improperly formatted manpage (upstream bug)
* References
CVE-2007-4565
CVE-2007-1558
* Modify Maintainer value to match the DebianMaintainerField
specification. - 17. By Martin Pitt
-
debian/init: Shuffle inclusion and default options so that
/etc/default/fetchmail can override the config file location and default
options. Thanks to Tobias Hunger! Closes: LP#30730 - 16. By Matthias Klose
-
* Merge from debian unstable; remaining changes:
- debian/control:
+ exim4 -> postfix dependency.
+ Add sysv-rc (>= 2.86.ds1-14.1ubuntu2) dependency for the 'multiuser'
update-rc.d feature.
- debian/fetchmail. postinst:
+ Install 'multiuser' rc.d symlinks.
+ Remove unnecessary rc.d symlinks on upgrades. - 15. By Kees Cook
-
* Merge from debian unstable, remaining changes:
- debian/control:
+ exim4 -> postfix dependency.
+ Add sysv-rc (>= 2.86.ds1-14.1ubuntu2) dependency for the 'multiuser'
update-rc.d feature.
- debian/fetchmail. postinst:
+ Install 'multiuser' rc.d symlinks.
+ Remove unnecessary rc.d symlinks on upgrades. - 14. By Andrew Mitchell
-
* Merge from debian unstable. Remaining Ubuntu changes:
- debian/control:
+ exim4 -> postfix dependency.
+ Add sysv-rc (>= 2.86.ds1-14.1ubuntu2) dependency for the 'multiuser'
update-rc.d feature.
- debian/fetchmail. postinst:
+ Install 'multiuser' rc.d symlinks.
+ Remove unnecessary rc.d symlinks on upgrades. - 13. By Martin Pitt
-
* Merge to Debian unstable. Remaining Ubuntu changes:
- debian/control:
+ exim4 -> postfix dependency.
+ Add sysv-rc (>= 2.86.ds1-14.1ubuntu2) dependency for the 'multiuser'
update-rc.d feature.
- debian/fetchmail. postinst:
+ Install 'multiuser' rc.d symlinks.
+ Remove unnecessary rc.d symlinks on upgrades. - 12. By Martin Pitt
-
Add debian/
patches/ 03.fix- ja.po.dpatch: Japanese does not have any plural
forms; remove the useless msgstr[1] from Japanese translation so that
msgfmt does not abort with a fatal error. Fixes FTBFS. - 9. By Scott James Remnant (Canonical)
-
* Merge from debian unstable, remaining changes:
- LSB init script,
- suggest postfix rather than exim4,
- python2.4
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/fetchmail