18:20 mandree 

Update to new upstream version.

Approved by: Corey Halpin (maintainer)
Approved by: garga@ (mentor)

18:49 miwi 

- Update to 6.3.14

PR:             145298
Submitted by:   Corey Halpin <chalpin@cs.wisc.edu> (maintainer)

09:54 mandree 

Update to new upstream release 6.3.14. Changes:

# SECURITY FIXES
* SSL/TLS certificate information is now also reported properly on computers
  that consider the "char" type signed. Fixes malloc() buffer overrun.
  Workaround for older versions: do not use verbose mode.  CVE-2010-0562
  See fetchmail-SA-2010-01.txt for details, including a minimal patch.

# BUG FIXES
* The IMAP client no longer skips messages from several IMAP servers including
  Dovecot if fetchmail's "idle" is in use.  Causes were that fetchmail (a)
  ignored some untagged responses when it should not (b) relied on EXISTS
  messages in response to EXPUNGE, which aren't mandated by RFC-3501 (the IMAP
  standard) and aren't sent by Dovecot either.
    Fix by Sunil Shetye (the fix also consolidates IMAP response handling,
  improving overall robustness of the IMAP client), bug report and testing by
  Matt Doran, with further hints from Timo Sirainen.
* The SMTP client now recovers from errors (such as servers dropping the
  connection after errors) when sending an RSET command.
    Fix by Sunil Shetye. Report by James Moe.
* The IMAP client now uses "SEARCH UNSEEN" rather than "SEARCH UNSEEN NOT
  DELETED" again on IMAP2, to fix a regression in fetchmail 6.2.5 reported by
  Will Stringer in June 2004. (Sunil Shetye)
* The IMAP client now uses "SEARCH UNSEEN UNDELETED" on IMAP4 and IMAP4r1
  servers (Sunil Shetye).
* Workaround: The IMAP client now falls back to "FETCH n:m FLAGS" if the server
  does not support "SEARCH". (Sunil Shetye)
* The IMAP client now requests message numbers in batches of 1,000 to avoid
  problems if there are more than 1860 unseen messages. (Sunil Shetye)
    Note that this wasn't security relevant because fetchmail would only read up
  to the maximum buffer size and leave the remainder of the string unread, going
  out of synch afterwards.
* Stricter validation of IMAP responses containing byte or message counts.

# CHANGES
* Only include gssapi.h if we're not including gssapi/gssapi.h, to fix a FreeBSD
  compiler warning about gssapi.h being obsolete.

# DOCUMENTATION
* The README.SSL document was revised for grammar, spelling, and clarity.
  Courtesy of Robert Mullin.

# TRANSLATION UPDATES
* [it]    Italian, by Vincenzo Campanella
----------

Approved by:    Corey Halpin (port maintainer)
Approved by:    miwi@ (mentor)

10:47 miwi 

- Update to 6.3.13 (updates translations and supports SMTP multiline replies)
- Remove Kerberos IV support, insecure and obsolete
- Mark BROKEN if KRB5_HOME is set and invalid
- Kill pre-configure, no longer needed
- Kill obsolete POP2 from make config menu, still available if given on make
  command line
- Auto-detect KRB5_HOME if it's $LOCALBASE or /usr
- MARK_JOBS_SAFE=yes
- Cease messing with @cwd in pkg-plist
- Reduce asterisks on pkg-message.in, to avoid screen clutter on long $PREFIX
  Rely on krb-config instead.

PR:             140100
Submitted by:   Matthias Andree <matthias.andree@gmx.de>
Approved by:    maintainer

15:12 wxs 

- Add a patch to fix segfault on startup.

PR:             ports/137972
Submitted by:   Christian Ludwig <chrissicool@chrissicool.net>
Approved by:    Corey Halpin <chalpin@cs.wisc.edu> (maintainer)

15:27 amdmi3 

- Update to 6.3.11

PR:             137604
Submitted by:   Corey Halpin <chalpin@cs.wisc.edu> (maintainer)
http://www.freebsd.org/ports/portaudit/5179d85c-8683-11de-91b9-0022157515b2.html

23:02 amdmi3 

- Update to 6.3.10
- Portlint

PR:             136774
Submitted by:   Corey Halpin <chalpin@cs.wisc.edu> (maintainer)

23:09 miwi 

- Pass maintainership to submitter

PR:             134189
Submitted by:   Corey Halpin <chalpin@cs.wisc.edu> (maintainer)

01:01 linimon 

Reset barner@FreeBSD.org due to several months of inactivity.

Hat:            portmgr

00:59 linimon 

Add http://homepages.uni-paderborn.de to MASTER_SITES.  The sunsite
mirrors appear to be behind.  Also (temporarily?) remove home.leo.org,
as the site seems to have been rearranged.

PR:             ports/130301
Submitted by:   Matthias Andree <matthias dot andree at gmx dot de>
Hat:            portmgr

12:12 pav 

- Update to 6.3.9

PR:             ports/129755
Submitted by:   Matthias Andree <matthias.andree@gmx.de>
Approved by:    maintainer timeout (barner; 20 days)

06:18 rafan 

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
 - Remove CONFIGURE_TARGET hack in various bsd.*.mk
 - USE_GNOME=gnometarget is now an no-op

Changes to individual ports, other than removing the CONFIGURE_TARGET hack:

= pkg-plist changed (due to the ugly CONFIGURE_TARGET prefix in * executables)
  - comms/gnuradio
  - science/abinit
  - science/elmer-fem
  - science/elmer-matc
  - science/elmer-meshgen2d
  - science/elmerfront
  - science/elmerpost

= use x86_64 as ARCH
  - devel/g-wrap

= other changes
  - print/magicfilter
    GNU_CONFIGURE -> HAS_CONFIGURE since it's not generated by autoconf

Total # of ports modified:  1,027
Total # of ports affected: ~7,000 (set GNU_CONFIGURE to yes)

PR:             126524 (obsoletes 52917)
Submitted by:   rafan
Tested on:      two pointyhat 7-amd64 exp runs (by pav)
Approved by:    portmgr (pav)

16:35 barner 

- Use revised patch for CVE-2008-2711
- Bump port revision

Security:       http://fetchmail.berlios.de/fetchmail-SA-2008-01.txt
Security:      
http://www.vuxml.org/freebsd/1e8e63c0-478a-11dd-a88d-000ea69a5213.html

07:46 barner 

- Security fix: potential crash in -v -v verbose mode.
- Bump port revision

PR:             ports/124718
Submitted by:   Matthias Andree <matthias.andree@gmx.de>
Security:      
http://www.vuxml.org/freebsd/168190df-3e9a-11dd-87bc-000ea69a5213.html
Security:       CVE-2008-2711

13:43 edwin 

Bump portrevision due to upgrade of devel/gettext.

The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).

PR:             ports/124340
Submitted by:   edwin@
Approved by:    portmgr (pav)

09:08 barner 

- Fix installation as non-root user

Submitted by:   Stefan Sperling
PR:             ports/122269

01:49 edwin 

Remove always-false/true conditions based on OSVERSION 500000

19:22 barner 

- Fix for CVE-2007-4565 [1]
- Manually include bsd.python.mk if WITH_X11 is set (after bsd.port.pre.mk) [2]

Security:      
http://www.vuxml.org/freebsd/45500f74-5947-11dc-87c1-000e2e5785ad.html
Security:       http://fetchmail.berlios.de/fetchmail-SA-2007-02.txt
Submitted by:   Matthias Andree <matthias.andree@gmx.de> [1]
PR:             ports/116011 [1]
Submitted by:   Jacula Modyun <jacula@gmail.com> [2]
PR:             ports/115714 [2]

14:31 barner 

- security/ca-roots is deprecated, switch to security/ca_roots_nss for
  SSL certificates.

09:36 rafan 

- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run

11:20 barner 

- Actually respect the `fetchmail_user' variable in single daemon
  mode
- Document that above variable is ignored in the per-user daemon mode
- Bump port revision

Requested by:   Graham Menhennitt <graham@menhennitt.com.au>
PR:             ports/114701

07:10 barner 

- Remove circular dependency in rcorder by removing the (unnessary) constraint
  that fetchmail is started "BEFORE LOGIN". "REQUIRE mail" (which in turn
  requires LOGIN) is enough.
- Bump PORTREVISION

PR:             ports/114294
Submitted by:   Alson van der Meulen <alson@flutnet.org>

19:37 barner 

Install fetchmailrc with 640 since it may contain passwords.
The fetchmailrc.sample file is still installed 644.

20:08 barner 

- Add pkg-message pointing to documenation in rc script.
- Add pointers to fetchmail documentation to rc script.

20:32 flz 

- Welcome X.org 7.2 \o/.
- Set X11BASE to ${LOCALBASE} for recent ${OSVERSION}.
- Bump PORTREVISION for ports intalling files in ${X11BASE}.

19:37 barner 

- Make fetchable
- Remove home.pages.de master site
- Add sunsite mirror

PR:             ports/111443
Submitted by:   Matthias Andree

14:10 rafan 

- Fix fetch, MASTER_SITE_BERLIOS already contains %SUBDIR%

20:04 barner 

- Update to 6.3.8
- Fix insecure APOP authentication (minor)

Security: http://fetchmail.berlios.de/fetchmail-SA-2007-01.txt
Security: http://www.vuxml.org/freebsd/f1c4d133-e6d3-11db-99ea-0060084a00e5.html
ChangeLog:
https://developer.berlios.de/project/shownotes.php?group_id=1824&release_id=12610

08:13 barner 

- Update to 6.3.7
- Regression fixes for KPOP and repoll after server disconnect (TLS)
  Details:
https://lists.berlios.de/pipermail/fetchmail-announce/2007-February/000047.html

14:38 barner 

- Update to 6.3.6
- Fixes two security issues, one of which is a longstanding password disclosure
bug.
- Several robustness fixes and other improvements

Release notes: 
https://developer.berlios.de/project/shownotes.php?group_id=1824&release_id=11977
Security:      
http://www.vuxml.org/freebsd/5238ac45-9d8c-11db-858b-0060084a00e5.html
Security:      
http://www.vuxml.org/freebsd/37e30313-9d8c-11db-858b-0060084a00e5.html
Reported by:    Matthias Andree (upstream author)

16:05 barner 

- Update to fetchmail 6.3.5. See here for the release notes:
 
http://developer.berlios.de/project/shownotes.php?group_id=1824&release_id=11358
- OPTIONize [1]
- GSSAPI support (requires Kerberos). [1]
- Removed POP2 from port's default configuration [1]

Requested by:   Stefan Thurner <thurners@nicsys.de> [1]

11:56 barner 

- Add new rc.conf option "fetchmail_logging_facility" which can be used
  to specify where fetchmail logs to. Default: --syslog (as hardcoded
  before). [1]
- Use marco for cp [2]
- Try to remove directories not listed in mtree [2]
- No portrevision bump since the default behaviour remains the same, and
  a new fetchmail version is to be exspected soon anyway.

Requested by:   Gerard Seibert <gerard@seibercom.net> [1]
Submitted by:   Stanislav Sedov <ssedov@mbsd.msk.ru> [2]
PR:             ports/101517

22:18 barner 

Make prefix clean.

PR:                     ports/97977
Submitted by:           Esa Karkkainen <ejk@iki.fi>
Big shiny pointy hat:   me

16:26 barner 

- Use %%RC_SUBR%% [1]
- Fix typo in Makefile [1]
- Fix recursive calls of rc script on older systems (requested in [2])
- Bump PORTREVISION

PR:                     97876 [1], 97335 [2]
Submitted by:           Jeremy Chadwick <freebsd@jdc.parodius.com> [1],
                        Veselin Slavov <vess@slavof.net> [2]

21:18 barner 

- Fix PID file for system-wide daemon mode
- Fix package: Create /var/run/fetchmail in pkg-install instead of
  post-install target.
- Bump PORTREVISION

PR:             ports/97283
Submitted by:   Martin Jackson <mhjacks@swbell.net>

16:58 barner 

- Update to 6.3.4 [1]
- Add rcNG script. See $PREFIX/etc/rc.d/fetchmail for
  instructions. Inspired by [2] and ports/www/apache22.

PR:             ports/96987 [1], ports/96079
Submitted by:   Rob MacGregor <freebsd.macgregor@blueyonder.co.uk> [1],
                Martin Jackson <mhjacks@swbell.net>

22:37 edwin 

Remove USE_REINPLACE from ports starting with M

12:47 barner 

- Prevent fetchmail from crashing if the .netrc file does not contain
  a password for a particular account.

- Bump PORTREVISION

Submitted by:   Craig Leres via Matthias Andree

15:14 barner 

- Update to 6.3.2
- Changes:
  * Fixes a denial of service bug/fetchmail crash after sending a bounce
  * Adds a Maillennium (Comcast) workaround
  * ChangeLog:
https://lists.berlios.de/pipermail/fetchmail-announce/2006-January/000022.html
Security:       http://fetchmail.berlios.de/fetchmail-SA-2006-01.txt
Security:       CVE-2006-0321
Security:      
http://www.vuxml.org/freebsd/f11d3b22-88c6-11da-a7b2-0060084a00e5.html

15:21 barner 

Update to 6.3.1

 * Fix null pointer dereference w/ headerless message in
   multi-drop mode [1]
 * Removed patches are in the upstream distribution now
 * ChangeLog:
https://lists.berlios.de/pipermail/fetchmail-announce/2005-December/000017.html

Security: http://www.vuxml.org/freebsd/f7eb0b23-7099-11da-a15c-0060084a00e5.html
Security: http://fetchmail.berlios.de/fetchmail-SA-2005-03.txt
Security: CVE-2005-4348

21:24 barner 

- Fix a null pointer dereference in multi-drop mode [1]
- Fix packaging if python is not present at compile time [2]
- Sort targets in Makefile
- Fix variable in the WITH_X11 case
- Bump PORTREVISION (for [1])

Submitted by:   Andreas Haakh <bugReporter@Haakh.de> [1]
Reviewed by:    Matthias Andree <matthias.andree@gmx.de>
                (upstream maintainer) [1]
Reported by:    pointyhat via kris [2]

19:58 barner 

- Add RUN_DEPENDS on security/ca-roots, so the certificate check really
  succeeds (if the servers certificate is signed by one of those authorites)

- Bump PORTREVISON, since a failing certiciate check spams the port users'
  maillog.

16:09 barner 

- Use USE_OPENSSL [1]
- Remove obsolete --enable-inet6 configure argument [1]
- Don't try to enable Kerberos IV and V at the same time [1]
- Add WITH_NTLM knob. Inform port user about other knobs
  (WITH_X11, WITHOUT_NLS) [1]
- Correct man page patch [1]
- Fix default OpenSSL certificate path [1] [2]
- Fix plist [1] [3]
- Bump PORTREVISON

Submitted by:   Matthias Andree <matthias.andree@gmx.de> [1]
Reported by:    Dieter Rauschenberger <dr@d-ra.de> [2]
PR:             ports/90084 [2]
Reported by:    kris via pointyhat [3]

21:07 barner 

- Update to fetchmail 6.3.0
- From the announcement:

  fetchmail 6.3.0 has been released on 2005-11-30. More than two years
  after the previous formal 6.2.5 release, this collects several dozen
  bug fixes, documentation, portability and IPv6 improvements and marks
  the beginning of a new "stable" 6.3.X branch that will not change,
  except for bug fixes and documentation updates.

- files/patch-pop2.c contributed by Stanislav Brabec <sbrabec@suse.cz>
  via Matthias Andree <matthias.andree@gmx.de> (upstream maintainer)

11:48 barner 

- Fix a bug introduced with fetchmail-6.2.5.2_3, where it would sometimes
  leave some messages on an IMAP server, i.e. this is the correct fix
  for the following bug (as described Makefile:1.161 and
  files/patch-imap.c:1.1):

  fix IMAP client timeout bug with upstream servers that do not send updated
  EXISTS counts after acknowledging EXPUNGE see <http://bugs.debian.org/314509>

- Bump PORTREVISION to 4

PR:                     ports/88850
Submitted by:           Vasil Dimov
Patch provided by:      Matthias Andree (upstream maintainer)
Patch tested by:        barner, Vasil Dimov

16:30 barner 

Add private backup master site.

Requested by:   Diane Bruce <db@db.net>
PR:             ports/88787

10:29 barner 

- fix IMAP client timeout bug with upstream servers that do not send updated
  EXISTS counts after acknowledging EXPUNGE see <http://bugs.debian.org/314509>

- add fetchmailconf wrapper check for _tkinter.so (if python was installed but
  not Tkinter, the wrapper would still try to run fetchmailconf.bin, which
  gives a less clear error message to the user than was intended)

- let fetchmailconf wrapper pass command line arguments to fetchmailconf.bin
  (it supports -d and -f FILE)

- replace PREFIX with LOCALBASE where appropriate

- bump PORTREVISION

Submitted by:   Matthias Andree <matthias.andree@gmx.de>
PR:             ports/88444

23:05 barner 

Don't indent comment added in last commit by one tab, so it is not printed.

19:06 barner 

- Use fetchmailconf-1.43.2 in order to fix a password exposure caused by
  insecure file creation.

- While here, move berlios.de to the top of the MASTERSITEs, since
  development takes place there.

- Bump PORTREVISION

Security:       CVE-2005-3088
Security:       http://fetchmail.berlios.de/fetchmail-SA-2005-02.txt

07:07 barner 

Forced commit to note the following (this also applies for the following files
removed in my earlier commit:

        files/patch-s1
        files/patch-r1
        files/patch-driver.c

Submitted by:   Matthias Andree <matthias DOT andree AT gmx DOT de>
Discovered by:  Miloslav Trmac
http://lists.berlios.de/pipermail/fetchmail-devel/2005-July/000397.html
New fix by:     Ludwig Nussel (SuSE security)

06:59 barner 

- Update to 6.2.5.2. This fixes a denial of service vulerability introduced
  in version 6.2.5.1

- Use distribution patch from fetchmail.berlios.de instead of keeping the
  security fix in CVS (-> remove patch-r1, patch-s1 which contained to
  update from 6.2.5 to 6.2.5.1).

- The above patch also contains a patch that we kept locally in
  patch-driver.c: This one has been removed, too.

10:25 barner 

- Update to 6.2.5.1 (security update!)
- Add new master site
- Take maintainership (no objections on freebsd-ports,
  Matthias also favours this option as long as the new FreeBSD
  maintainer will be responsive and submit patches upstream - promissed :-)

Submitted by:   Matthias Andree <matthias DOT andree AT gmx DOT de>
PR:             ports/83805
Obtainted from: http://download.berlios.de/fetchmail/fetchmail-patch-6.2.5.1.gz
Security:      
http://www.vuxml.org/freebsd/3497d7be-2fef-45f4-8162-9063751b573a.html

03:49 linimon 

With portmgr hat on, reset eik's ports since he has been inactive for
several months (not responding to email).

Discussed among:        portmgr team

03:26 obrien 

At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.

08:04 obrien 

Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.

17:26 eik 

- fix POP bug [1]
- add WITHOUT_NLS [2]

Seems like 6.2.6 takes a while...

PR:             60262 [1], 62732 [2]
Submitted by:   Stuart Barkley <stuartb@4gh.net> [1]
                Katsura Matsumoto <katsura@cc.osaka-kyoiku.ac.jp> [1]

04:36 marcus 

Add USE_GETTEXT and bump PORTREVISION.

Submitted by:   trevor
Tested by:      bento

18:12 trevor 

Now gettext 0.12.1 is gettext-old.

22:15 eik 

Try some new fetchmail mirrors

Noticed by:     Bill Fenner's portsurvey
Approved by:    marcus (mentor)

00:29 eik 

switch my ports to my FreeBSD address

Approved by:    marcus (mentor)

09:33 sergei 

- Update to 6.2.5 (see http://catb.org/~esr/fetchmail/NEWS for details)
- Use DOCSDIR macro in pkg-plist
- Don't install yet another copy of GPL
- Pass maintainership to Oliver Eikemeier

PR:             58283, 58341
Submitted by:   Oliver Eikemeier <eikemeier@fillmore-labs.com>,
                Esa Karkkainen <ejk@iki.fi>
Approved by:    Ville Eerola <ve@sci.fi> (previous maintainer),
                krion (implicit)

03:26 silby 

Update fetchmail port to 6.2.4

20:25 marcus 

Bump the PORTREVISION for the ports directly affected by the gettext upgrade.

Prodded by:     kris

05:41 marcus 

Chase the libintl.so shared lib version.

11:33 daichi 

update mail/fetchmail: 6.2.0 --> 6.2.2

PR:             53280
Submitted by:   Oliver Eikemeier <eikemeier@fillmore-labs.com>

13:04 sf 

track ESR's page.

www.tuxedo.org -> www.catb.org

12:42 knu 

De-pkg-comment.

14:05 nectar 

Upgrade to 6.2.0, primarily to fix YET ANOTHER remotely exploitable
vulnerability.  That's at least four, but who's counting?
<URL:http://security.e-matters.de/advisories/052002.html>

10:01 dougb 

Update to 6.1.2, released 10/31. It's a very simple bugfix upgrade.

PR:             ports/44830
Submitted by:   Matthias Andree <matthias.andree@web.de>

14:54 naddy 

This port update fixes the pkg-plist to include the new localizations so they
are included in the package, and it contains many upstream bugfixes, installs
the NEWS documentation file. These are the upstream fixes:

* OTP fix patches from Stanislav Brabec <utx@penguin.cz>
* fix patch for writing antispam capability correctly in conf.c.
* Fix patches for Debian bugs #162571, #156592.
* Correction to manpage re -b and qmail.
* Patch to disable use of STLS if auth passwd is specified.
* Fix specfile generation to handle SSL correctly.
* New Danish, Turkish, and Catalan translation files.
* Improved ODMR debug messages.
* IMAP efficiency hack; don't fetch sizes unless needed.
* Detect and rewrite invalid return paths beginning with @.
* Fix for subtle freeing bug that suppressed information in some bounce msgs.
* Newline fix patches for internationalization files.
* Fix reversed test guarding authentication-failure warnings.
* Fix POP3 breakage starting at 5.9.14.

PR:             44330
Submitted by:   Matthias Andree <matthias.andree@web.de>

18:23 cy 

Update 5.9.13 --> 6.1.0. Fixes yet another buffer overflow (exploit)
described at http://security.e-matters.de/advisories/032002.html.

Approved by:    nectar (using his security-officer hat)
                will (using his portmgr hat)
                As we are so close to last tagging, as suggested by
                portmgr, maintainer approval is forgone.

15:20 nectar 

Mark FORBIDDEN due to another buffer overflow.
http://security.e-matters.de/advisories/032002.html

  % cvs rlog ports/mail/fetchmail/Makefile | grep 'exploit' | wc
         3      28     203

02:05 kevlo 

Update to version 5.9.13

PR: 41623
Submitted by:    Esa Karkkainen <ejk@iki.fi>

16:22 ade 

Chase shlib rev of devel/gettext

Submitted by:   lots and lots
Pointy hat to:  ade

04:29 cy 

Upgrade 5.9.6 --> 5.9.11 (fixing a remotely exploitable buffer overrun).

PR:             38328
Submitted by:   Dominic Marks <dominic_marks@btinternet.com>
Approved by:    kris for the Security Officer Team,
                will for the Port Manager Team, and
                MAINTAINER timeout

21:37 nectar 

Mark FORBIDDEN due to a remotely exploitable buffer overflow.

http://tuxedo.org/~esr/fetchmail/NEWS
http://rhn.redhat.com/errata/RHSA-2002-047.html

17:10 ade 

gettext upgrade uber-patch (stage 3)

- switch devel/gettext (0.11.1) on, installing full package
- flip devel/gettext-old (0.10.35) to installing only static binaries
  with a "-old" suffix -- gettext-old will have its deorbit burn
  sequence initiated just after 4.6-RELEASE
- fix up ports for the new world order

Reviewed by:    portmgr

19:44 ade 

Stage 1 of gettext update.

Move gettext (0.10.35) with gettext-old
Update gettext from gettext-devel (0.10.40)
Remove gettext-devel
Fix dependencies

Stage 2 will involve upgraded gettext to 0.11 and fixing issues
Stage 3 involves a de-orbit burn sequence for gettext-old

Reviewed by:    portmgr

18:04 ijliao 

upgrade to 5.9.6    

09:04 roam 

For the X11 case, when tkinter is needed, look for it the right way -   by
USE_PYTHON and PYTHON_VERSION instead of hardcoding a python2.0   path
component.   Bump PORTREVISION accordingly.    

22:35 kris 

Upgrade to 5.8.17 ("Another victory for Open Source!").  This fixes a   remotely
exploitable buffer overflow when connecting to a malicious   server.    

22:20 ben 

Update to 5.8.11, which supports now ODMR, so update pkg-{descr,comment} to  
mention ODMR to help "make search".    

08:51 roam 

Update to 5.8.6.   Fix a problem with building Kerberos 4 (Kerberos 5 is still
broken).    

08:08 dougb 

Update to 5.8.5, provided by the maintainer.    

07:24 roam 

Update to 5.8.1 with lots of bugfixes.  Remove the substitution of  
/usr/bin/true for autoconf and friends - the fetchmail build system   does the
right thing now.    

08:38 sobomax 

Unbroke on the systems with crypto from ssl port.    

06:37 dougb 

Commit the least objectionable of the possible fixes... maintainer, et al   can
argue about the rest later, let's get the thing fixed first. This is   a
combination of my fix and Peter Pentchev's.    

11:04 sobomax 

Try harder to prevent build process from unnecessarily invoking autoheader,  
autoconf, automake and aclocal.    

09:40 sobomax 

Fix two breakages:   - Prevent Makefile from trying to run 644 missing script
when no autocrap     is installed;   - add missed by the configure -lintl into
LDFLAGS.    

12:08 roam 

Update to 5.7.4.   Add USE_GMAKE - too many things in the autoconf build process
depend   on GNU make.    

12:03 roam 

Update to 5.7.2, add NOPORTDOCS handling, fix --enable-opie misspelled   as
--enable-OPIE until now.    

08:30 roam 

Update to 5.6.8, which contains preauthentication fixes and enhancements.    

10:36 roam 

Update to 5.6.5.    

08:17 roam 

Update to 5.6.3, skipping the slightly buggy 5.6.2.   Also, correct the help
message in the fetchmailconf wrapper script -   fetchmailconf depends on
py-tkinter, not just Python.    

07:13 roam 

Update to 5.6.1.    

16:20 roam 

Add WITH_NTLM toggle to optionally build support for NTLM authentication.   Bump
PORTREVISION to reflect functionality change.    

08:51 roam 

Look for the py-tkinter shared library in the correct directory when   building
WITH_X11.  No PORTREVISION bump - WITH_X11 did not build at all   until now.    

01:00 roam 

Update to 5.6.0 - a fetchmail 'gold release' which fixes two minor bugs   and an
omission and gives ESR a chance to do some more serious development   in a new
development version.    

15:29 kevlo 

Update to 5.5.6    

20:56 jeh 

Update fetchmail to 5.5.5