Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package mutt for openSUSE:Factory checked in at 2026-05-05 16:22:38 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mutt (Old) and /work/SRC/openSUSE:Factory/.mutt.new.30200 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mutt" Tue May 5 16:22:38 2026 rev:125 rq:1350952 version:2.3.2 Changes: -------- --- /work/SRC/openSUSE:Factory/mutt/mutt.changes 2026-01-28 15:17:58.597042606 +0100 +++ /work/SRC/openSUSE:Factory/.mutt.new.30200/mutt.changes 2026-05-05 16:22:40.814101738 +0200 @@ -1,0 +2,37 @@ +Tue May 5 08:07:58 UTC 2026 - Dr. Werner Fink <[email protected]> + +- Update to mutt 2.3.2 (Bug fix release) + * Mutt 2.3.2 was released on April 26, 2026. + It is a bug-fix release, fixing an assortment of issues, + including a possible NULL dereference in the GPGME code. + * Mutt 2.3.1 was released on March 20, 2026. + It is a bug-fix release, fixing a build issue when configured + --without-wc-funcs, and a bug in the folder browser. + * Mutt 2.3.0 was released on January 25, 2026. + It release has new features and bug fixes. + + $socket_receive_timeout and $socket_send_timeout cause mutt to + timeout on a network read/write operation, respectively. These + could be useful if you have an unreliable connection and + frequently find mutt gets stuck in a read. + ! The folder browser now differentiates browsing for a file versus a + mailbox. For IMAP users, this means when attaching a file to an + email, mutt will browse your local computer by default. + ! <edit-label> no longer untags messages. This is consistent with + other operations inside of mutt. + + $imap_reconnect_tries and $imap_reconnect_sleep control the number + of times mutt will try to reconnect when a connection is lost, and + how long to sleep between each retry. +- Upgrading from Mutt 2.2.16 to 2.3.2 is a critical security jump to + fix the bugs boo#1263892, boo#1263893, boo#1263894, boo#1263895, + boo#1263896, and boo#1263897: + * CVE-2026-43862: Fixes a NULL pointer dereference in the GPGME + signature summary code that could crash the application. + * CVE-2026-43863 & CVE-2026-43864: Prevents crashes and potential + memory issues when handling IMAP AUTH-CRAM MD5 authentication. + * CVE-2026-43861 & CVE-2026-43860: Addresses issues with embedded + NUL characters in URL decoding, which could lead to bypasses or crashes. + * CVE-2026-43859: Fixes a security level size check in GSSAPI + authentication to prevent buffer-related errors. +- Remove mutt-1.10.1-imap.patch as it seems to solved upstream now + +------------------------------------------------------------------- Old: ---- mutt-1.10.1-imap.patch mutt-2.2.16.tar.gz mutt-2.2.16.tar.gz.asc New: ---- mutt-2.3.2.tar.gz mutt-2.3.2.tar.gz.asc ----------(Old B)---------- Old: authentication to prevent buffer-related errors. - Remove mutt-1.10.1-imap.patch as it seems to solved upstream now ----------(Old E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mutt.spec ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:42.322164193 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:42.326164359 +0200 @@ -20,7 +20,7 @@ %bcond_with mutt_openssl %bcond_without mutt_gnutls Name: mutt -Version: 2.2.16 +Version: 2.3.2 Release: 0 Summary: Mail Program # ftp://ftp.mutt.org/mutt/devel/ @@ -55,8 +55,6 @@ Patch18: mutt-1.5.21-mailcap.diff # PATCH-FIX-SUSE: bsc#907453 - CVE-2014-9116: mutt: heap-based buffer overflow in mutt_substrdup() Patch19: bsc907453-CVE-2014-9116-jessie.patch -# PATCH-ENHANCE-SUSE: allow to list current imap folders -Patch20: mutt-1.10.1-imap.patch # PATCH-ENHANCE-SUSE: boo#1156477 - Mutt has an option to ask before quitting on ^C but quits immediately on ^4 Patch21: mutt-Fix-SIGQUIT-handling.patch BuildRequires: autoconf @@ -163,7 +161,6 @@ %patch -P 16 -b .crlf %patch -P 18 -b .mailcap %patch -P 19 -b .cvw2014.9116 -%patch -P 20 -b .imap %patch -P 21 -b .quit cp %{SOURCE2} . ++++++ mutt-1.13.3.dif ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:42.398167340 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:42.402167507 +0200 @@ -7,7 +7,7 @@ --- configure.ac +++ configure.ac 2020-01-14 13:04:28.102878757 +0000 -@@ -299,7 +299,7 @@ main () +@@ -298,7 +298,7 @@ main () mutt_cv_slang=$withval if test -d $withval/include/slang; then CPPFLAGS="$CPPFLAGS -I${withval}/include/slang" @@ -16,7 +16,7 @@ CPPFLAGS="$CPPFLAGS -I${withval}/include" fi LDFLAGS="$LDFLAGS -L${withval}/lib" -@@ -748,8 +748,12 @@ AC_ARG_WITH(ssl, AS_HELP_STRING([--with- +@@ -747,8 +747,12 @@ AC_ARG_WITH(ssl, AS_HELP_STRING([--with- else if test "$with_ssl" != "yes" then @@ -31,7 +31,7 @@ fi saved_LIBS="$LIBS" -@@ -836,8 +840,12 @@ AC_ARG_WITH(sasl, AS_HELP_STRING([--with +@@ -835,8 +839,12 @@ AC_ARG_WITH(sasl, AS_HELP_STRING([--with if test "$with_sasl" != "yes" then ++++++ mutt-1.5.15-wrapcolumn.diff ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:42.418168169 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:42.422168335 +0200 @@ -6,7 +6,7 @@ --- init.h +++ init.h 2020-01-14 13:28:27.408149074 +0000 -@@ -4857,6 +4857,7 @@ struct option_t MuttVars[] = { +@@ -4889,6 +4889,7 @@ struct option_t MuttVars[] = { ** Also see $$copy_decode_weed, $$pipe_decode_weed, $$print_decode_weed. */ { "wrap", DT_NUM, R_PAGER_FLOW, {.p=&Wrap}, {.l=0} }, ++++++ mutt-1.5.20-sendgroupreplyto.diff ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:42.446169328 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:42.450169495 +0200 @@ -6,7 +6,7 @@ --- init.h +++ init.h 2020-01-14 13:12:26.725982952 +0000 -@@ -3479,6 +3479,13 @@ struct option_t MuttVars[] = { +@@ -3492,6 +3492,13 @@ struct option_t MuttVars[] = { ** .pp ** Also see the $$force_name variable. */ @@ -22,7 +22,7 @@ ** .pp --- mutt.h +++ mutt.h 2020-01-14 13:07:33.727426389 +0000 -@@ -539,6 +539,7 @@ enum +@@ -540,6 +540,7 @@ enum OPTSAVEADDRESS, OPTSAVEEMPTY, OPTSAVENAME, ++++++ mutt-1.6.1-opennfs.dif ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:42.478170654 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:42.482170820 +0200 @@ -73,7 +73,7 @@ { --- mutt.h +++ mutt.h 2020-01-14 13:28:45.787807571 +0000 -@@ -1221,4 +1221,7 @@ typedef struct +@@ -1223,4 +1223,7 @@ typedef struct #include "lib.h" #include "globals.h" ++++++ mutt-2.2.16.tar.gz -> mutt-2.3.2.tar.gz ++++++ ++++ 61043 lines of diff (skipped) ++++++ patch-1.5.24.vk.pgp_verbose_mime ++++++ --- /var/tmp/diff_new_pack.MxwUVu/_old 2026-05-05 16:22:43.314205277 +0200 +++ /var/tmp/diff_new_pack.MxwUVu/_new 2026-05-05 16:22:43.318205443 +0200 @@ -6,7 +6,7 @@ --- globals.h +++ globals.h 2020-01-14 13:37:00.770606718 +0000 -@@ -280,6 +280,8 @@ WHERE char *PgpDefaultKey; +@@ -284,6 +284,8 @@ WHERE char *PgpDefaultKey; WHERE char *PgpSignAs; WHERE long PgpTimeout; WHERE char *PgpEntryFormat; @@ -17,7 +17,7 @@ WHERE char *PgpVerifyCommand; --- init.h +++ init.h 2020-01-14 13:41:15.145875625 +0000 -@@ -3869,9 +3869,18 @@ struct option_t MuttVars[] = { +@@ -3875,9 +3875,18 @@ struct option_t MuttVars[] = { ** a line quoted text if it also matches $$smileys. This mostly ** happens at the beginning of a line. */
