CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2011/06/06 07:57:07
Modified files:
mail/fetchmail : Makefile distinfo
mail/fetchmail/patches: patch-Makefile_in patch-configure
Removed files:
mail/fetchmail/patches: patch-socket_c
Log message:
update fetchmail to 6.3.20, tested by jasper@, lots of fixes including:
* CVE-2011-1947
- use timeouts for IMAP STARTTLS/POP3 STLS negotiation which could cause
fetchmail freezes if a server was hanging.
* security improvements to defang X.509 certificate abuse
- require wildcard CN/subject alternative names to start with "*." not just "*"
- don't allow wildcards to match domain literals (such as 10.9.8.7) or
wildcards in domain literals ("*.168.23.23").
- don't allow wildcarding top-level domains.
