16:36 ler 

mail/dovecot, mail/dovecot-pigeonhole: upgrade to 2.3.2 and 0.5.2 respectively

dovecot changelog:
v2.3.2 is mainly a bugfix release. It contains all the changes in v2.2.36, as
well as a bunch of other fixes (mainly for v2.3-only bugs). Binary packages are
already in https://repo.dovecot.org/

* old-stats plugin: Don't temporarily enable PR_SET_DUMPABLE while
   opening /proc/self/io. This may still cause security problems if the
   process is ptrace()d at the same time. Instead, open it while still
   running as root.
+ doveadm: Added mailbox cache decision&remove commands. See
   doveadm-mailbox(1) man page for details.
+ doveadm: Added rebuild attachments command for rebuilding
   $HasAttachment or $HasNoAttachment flags for matching mails. See
   doveadm-rebuild(1) man page for details.
+ cassandra: Use fallback_consistency on more types of errors
+ lmtp proxy: Support outgoing SSL/TLS connections
+ lmtp: Add lmtp_rawlog_dir and lmtp_proxy_rawlog_dir settings.
+ submission: Add support for rawlog_dir
+ submission: Add submission_client_workarounds setting.
+ lua auth: Add password_verify() function and additional fields in
   auth request.
- doveadm-server: TCP connections are hanging when there is a lot of
   network output. This especially caused hangs in dsync-replication.
- Using multiple type=shared mdbox namespaces crashed
- mail_fsync setting was ignored. It was always set to "optimized".
- lua auth: Fix potential crash at deinit
- SSL/TLS servers may have crashed if client disconnected during
   handshake.
- SSL/TLS servers: Don't send extraneous certificates to client when
   alt certs are used.
- lda, lmtp: Return-Path header without '<' may have assert-crashed.
- lda, lmtp: Unencoded UTF-8 in email address headers may assert-crash
- lda: -f parameter didn't allow empty/null/domainless address
- lmtp, submission: Message size limit was hardcoded to 40 MB.
   Exceeding it caused the connection to get dropped during transfer.
- lmtp: Fix potential crash when delivery fails at DATA stage
- lmtp: login_greeting setting was ignored
- Fix to work with OpenSSL v1.0.2f
- systemd unit restrictions were too strict by default
- Fix potential crashes when a lot of log output was produced
- SMTP client may have assert-crashed when sending mail
- IMAP COMPRESS: Send "end of compression" marker when disconnecting.
- cassandra: Fix consistency=quorum to work
- dsync: Lock file generation failed if home directory didn't exist
- Snippet generation for HTML mails didn't ignore &entities inside
   blockquotes, producing strange looking snippets.
- imapc: Fix assert-crash if getting disconnected and after
   reconnection all mails in the selected mailbox are gone.
- pop3c: Handle unexpected server disconnections without assert-crash
- fts: Fixes to indexing mails via virtual mailboxes.
- fts: If mails contained NUL characters, the text around it wasn't
   indexed.
- Obsolete dovecot.index.cache offsets were sometimes used. Trying to
   fetch a field that was just added to cache file may not have always
   found it.

pigeonhole changelog:
Changelog v0.5.2:

+ Implement plugin for the a vendor-defined IMAP capability called
   "FILTER=SIEVE". It adds the ability to manually invoke Sieve filtering
   in IMAP. More information can be found in
   doc/plugins/imap_filter_sieve.txt.
- The Sieve address test caused an assertion panic for invalid addresses
   with UTF-8 codepoints in the localpart. Fixed by properly detecting
   invalid addresses with UTF-8 codepoints in the localpart and skipping
   these like other invalid addresses while iterating addresses for the
   address test.
- Make the length of the subject header for the vacation response
   configurable and enforce the limit in UTF-8 codepoints rather than
   bytes. The subject header for a vacation response was statically
   truncated to 256 bytes, which is too limited for multi-byte UTF-8
   characters.
- Sieve editheader extension: Fix assertion panic occurring when it is
   used to manipulate a message header with a very large header field.
- Properly abort execution of the sieve_discard script upon error.
   Before, the LDA Sieve plugin attempted to execute the sieve_discard
   script when an error occurs. This can lead to the message being lost.
- Fix the interaction between quota and the sieve_discard script. When
   quota was used together with a sieve_discard script, the message
   delivery did not bounce when the quota was exceeded.

 

19:23 ler 

mail/dovecot: fix "2.3.1 Replication is throwing scary errors"

make makepatch for cleanliness
Submitted by:	remko
Reported by:	remko
Obtained from:	upstream

 

18:11 adamw 

Add an upstream patch to fix a panic when a malformed address line
is fed to dovecot, as OpenSMTPd can do.

Submitted by:	gahr
Reported by:	brnrd
Obtained
from:	https://github.com/dovecot/core/commit/fbed9168dc3b104b09bd748409aec902328cd8e5