fetchmail-6.3.26-21.3.1<>,UZE-/=„tARn<+ٙKR)}➰7wf"ѴUCe*bc`j5%,e&uzF]u,n$ &\񞼥QeUR"I6LzMsy.gۃmPls=;3~HY&AX7?{FǛù Fp3;'IjS뺆)n7S0#g*z&>=3Xeh QN`gFvyfD|‹^ @;'wks>E? d   K48@DW`i tt t t t (t )tt+Dt-t//t11&2&5&(585#96`#:8#=>? @FG,tHtItXpY|\t]xt^&b^cdeflutvwtxtyzCfetchmail6.3.2621.3.1Full-Featured POP and IMAP Mail Retrieval DaemonFetchmail is a robust and well-documented remote mail retrieval and forwarding utility intended to be used over on-demand TCP/IP links (such as SLIP or PPP connections). Fetchmail retrieves mail from remote mail servers and forwards it to your local machine's delivery system, so it can be read by normal mail user agents, such as mutt, elm, pine, (x)emacs/gnus, or mailx. fetchmailconf, an interactive GUI configurator suitable for end-users, is included in the fetchmailconf package.ZE-lamb121SopenSUSE Leap 42.3openSUSEGPL-2.0+http://bugs.opensuse.orgProductivity/Networking/Email/Utilitieshttp://www.fetchmail.info/linuxx86_64usr/sbin/useradd -r -g daemon -s /bin/false \ -c "mail retrieval daemon" -d /var/lib/fetchmail fetchmail 2>/dev/null || : test -n "$FIRST_ARG" || FIRST_ARG="$1" # disable migration if initial install under systemd [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$FIRST_ARG" -eq 1 ]; then for service in fetchmail.service ; do sysv_service="${service%.*}" touch "/var/lib/systemd/migrated/$sysv_service" || : done else for service in fetchmail.service ; do # The tag file might have been left by a preceding # update (see bsc#1059627) rm -f "/run/rpm-fetchmail-update-$service-new-in-upgrade" if [ ! -e "/usr/lib/systemd/system/$service" ]; then touch "/run/rpm-fetchmail-update-$service-new-in-upgrade" fi done for service in fetchmail.service ; do sysv_service="${service%.*}" if [ -e /var/lib/systemd/migrated/$sysv_service ]; then continue fi if [ ! -x /usr/sbin/systemd-sysv-convert ]; then continue fi /usr/sbin/systemd-sysv-convert --save $sysv_service || : done fi PNAME=fetchmail SUBPNAME= TEMPLATE_DIR=/var/adm/fillup-templates SYSC_TEMPLATE=$TEMPLATE_DIR/sysconfig.$PNAME$SUBPNAME SD_NAME="" if [ -x /bin/fillup ] ; then if [ -f $SYSC_TEMPLATE ] ; then echo "Updating /etc/sysconfig/$SD_NAME$PNAME..." mkdir -p /etc/sysconfig/$SD_NAME touch /etc/sysconfig/$SD_NAME$PNAME /bin/fillup -q /etc/sysconfig/$SD_NAME$PNAME $SYSC_TEMPLATE fi else echo "ERROR: fillup not found. This should not happen. Please compare" echo "/etc/sysconfig/$PNAME and $TEMPLATE_DIR/sysconfig.$PNAME and" echo "update by hand." fi test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" -a -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -eq 1 ]; then if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl preset fetchmail.service || : fi elif [ "$FIRST_ARG" -gt 1 ]; then for service in fetchmail.service ; do if [ ! -e "/run/rpm-fetchmail-update-$service-new-in-upgrade" ]; then continue fi rm -f "/run/rpm-fetchmail-update-$service-new-in-upgrade" if [ ! -x /usr/bin/systemctl ]; then continue fi /usr/bin/systemctl preset "$service" || : done for service in fetchmail.service ; do sysv_service=${service%.*} if [ -e /var/lib/systemd/migrated/$sysv_service ]; then continue fi if [ ! -x /usr/sbin/systemd-sysv-convert ]; then continue fi /usr/sbin/systemd-sysv-convert --apply $sysv_service || : touch /var/lib/systemd/migrated/$sysv_service || : done fi # Ensure that all files are readable by fetchmail with non-root UID. touch var/log/fetchmail chown fetchmail var/log/fetchmail chmod 0600 var/log/fetchmail test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable fetchmail.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop fetchmail.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart fetchmail.service ) || : fi else # package uninstall for service in fetchmail.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi fi if [ $1 = 0 ]; then rm -rf var/lib/fetchmail fiw&F l%vm u x "I sH  g#  v 9f NL 6=   D}4dj P U y   e!#yXPĻ39,J>l,SC[^h5[큤A큤A큤큤큤큤큤큤AZE+ZE+ZE,ZE+ZE+ZE+ZE+ZE-QuQvQvQG(PQvQvPQvmPPPQG'ZE+MhMhMhMhMhMhQvmMhMhQvmQvmQvmQvmQvmMhQvmQvmQvmQvmQvmQvmMhMhMhMhMhMhMhMhMhMhMhQvmMhQvmQvmQvmQvmMhQvmQvmQvmQvmQvmQvmPQvmQvPPPPPPPPPPPPPPPQvmQvPZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+ZE+d41d8cd98f00b204e9800998ecf8427e0b3c5e5342e15c684b7099343c155303d72ed7741a48a78322d844bb1303cfa63d419bad57b1bbdd907c55a8659de922573b01364a8023d390ba18a6acca8216e95bb554f1b31efde748f1e34cb96f8bfbb509e0303f5ded1cbfc0cc8705f28c7621e562bae393b1f090ee1421d93732114d3e6c459d5c9a8691e063a2d80ddbfe747a2ab625277be2cb6932a819b2c09e188dfbd0fc8a916d9852b22af494f3f65c968d5fc3c403bf947f992365f7300fc3d18cb1f26ad91befe87f2089bff3d015949e4852a7b3a143a076dce0a9ca855734e1b657fc1d8c1f4329bd1547d33f9ca72edb62d3bb9ebc5c9bedd880f64f078be1c40058a6105a8e5e2fcfb38f1e22689c063e3eaac109ab9f3551c6b979abc8f88df4ca88c4c0ba102eb0171b1241e59aa7d99cbedb0736319346129b0aaf38e3406dc526a3ceb9d3ad76cec5b94d87e6d41ea514eb9fad12df1d63fe5a185e769cd44b20ff6e738e2b4dea2f062c5d2fa6bd0b1b9fc76e950db7d56718d056cfc600e7f30f9b43f6f5cfde8273c821cc629c0faa314311f14df8cf7e75a3ed5447eca6d8968e399b036bd8ec8f772572cd3873e9f3c3901edbff087b87ecacac15346862405133dc83abb7e8c022d6dc50b931b165a62da9f43b55b5c7a34abba645d718fab9b02e0fccd95c37c5d8f14f9b965fff0084948afee598e37b7f115fbc975e3ad3ffa021ea54f4ed8173753f3e7cc07de9d7bd1cdd97086dd51e060a44c2e3a1e4b58072b6d796eb4057ead0f7d349d8fcff5e360e12ff80b5ea3501d8b853c217830aa8036086e1eee43c4bd302071fe911b36400ba513016246e0e5f50a42b803200e237eaa1d4a89cd509e6b31b6dc1de0dcce21cae11996bede6d248dc2a6d5726ff75272ee608cea03c079988fa5a57c547586cb80f591760088af2b3511b80012d75e8cf0c873978913bd3ad77b74b3a26ed87fcd945d6409e6a7dcf828047f6034df164b3bd88dcc642877dbab6296ed7f54e8957ef6468816842ad31855a1c706630c029b78061b37914287972064111093505befcafb10640ffbd1968d28b457dff92663c5c80e67747eee970dfeaaa08472797c3b3f5556d0f9dc83c57f13766b750a20e3d4f733ab486a71fafc054e8a0a869e6ba540b3c4f5f84f9d357d5450a601a0d003f966f3bc99115df047977c4a60e4100e55b86f5aebb3448a144a8d5586447a4a9c56d148cbf03d32667338cea3e76a7fda7dda9d77a0a8d68426d6937fc42c625fcdd8db1863dcd31cc3ee001ec163fe54bfb1d280d965f985b1520c9fc62a058b9ace03efc6a79f5d218a45f134ce8cb3672221069d03bdf66c48431ba98cd6ddd26d8261a0cbd0cfb2f9753d9e6247b57e3f803fd187dac747afe5512040dc687848798862007914c70982063bb1768a55bdd6d6609d45f8857c832ffa5e4b8d41c5f1c2852fec0030a88c62100c529f106f579eb1e5fc43bbb36b5cc80c5fafd5390fb80ef0b534850d3717b2febb17bea030f1f782ad2110b7f067086c74ed792670a595196a0b74ee42a7374c2668293b65d5268073058c70fd9332b87e0308e0a5932703c4979f9b5ee1768addb23e6197576cfe4a7e11ec8ebba36a06424dd2823a696464127ff931c6b95ede0cac4b12bdf9d65efc8ea8f5e73084c57ac004a02d2b0ed64f82b029504cb8138a501b81399a0a179a2de5ada23d7c7ae508ff15c6300556c0ed2c38add73671b335ce067b91f15146ab51c1d028a0e6011d4fd3f1f94e5acb53454e4dada9a374f44c8283a4c5b36f2043008a1b4dfff304e73aeed749edf31cb6b421f899a5f5855ae9841fd73e86ae0945cc8fb589198c60c276f76b2523b8b401161fee3688d9df2a5469585289bcdece59061dcfe5b8d2aa9f80df57ecb4231e82c3f40bf37aa3ad0462a118a97e7d50e43b44d4e646dde3d2eb4b31e7dff190c789bbb43220722733b16283a31bf1bfae98a452ea4710218aac5092456778a1098b2bb58d4c1d4956fd6a3ce25ec20bf94b2fe5da60a5d706a4ecaa277ef525d1cdd087ae94d7c5c1c32ee7c2111c594d091b9cacb6e1d62cdad6caec79efd5c050a5b5f449f2494bb18b6c109833aea897daf8baffa4f358e7dc5681309bd628d142b77ffaa15abd99a65bf8d1728f07fe6e22d4be6fae622530a284567c4557c1dbc7325b524d1b085826dd0f49268808d92c3bc8a0ac60410d04e8e065e2916127a2e1e397d3464363b2e14586cf6528ef6a9a248cfcd114de02e292fa12fe280ab4d9bd2ff81305214d36815cf2cbe73059b23103f6c36da07ee02731b4a9598e7d06dd4e478b631333fcb682f9517b531f619c7ff5bdf47a6a53e0b98998efa0b8c8d9f94f5f0edfabbdb079dfd8e37ae7e0b58b03031754dae986b60e95f5233fca955986b718833a3ae5429d747b9db6f17b0e482105d36805c1115de62be0021b31b31ff4c65d1a5963cb820d41d8cd98f00b204e9800998ecf8427eserviceQ@fetchmailrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootfetchmailfetchmailrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootfetchmail-6.3.26-21.3.1.src.rpmconfig(fetchmail)fetchmailfetchmail(x86-64) @@@@@@@@@@@@@@@@@@@@   /bin/sh/bin/sh/bin/sh/bin/sh/bin/sh/usr/bin/perlconfig(fetchmail)coreutilsdiffutilsfillupgreplibc.so.6()(64bit)libc.so.6(GLIBC_2.11)(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.15)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libcom_err.so.2()(64bit)libcrypto.so.1.0.0()(64bit)libgssapi_krb5.so.2()(64bit)libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)libkrb5.so.3()(64bit)libkrb5.so.3(krb5_3_MIT)(64bit)libresolv.so.2()(64bit)libresolv.so.2(GLIBC_2.2.5)(64bit)libssl.so.1.0.0()(64bit)logrotatepwdutilsrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)systemdsystemdsystemdsystemdrpmlib(PayloadIsLzma)6.3.26-21.3.13.0.4-14.0-14.4.6-14.11.2Zjsegitz@novell.comp.drouand@gmail.comvcizek@suse.comvcizek@suse.comvcizek@suse.comcoolo@suse.comvcizek@suse.comseife+obs@b1-systems.comcoolo@suse.comjengelh@medozas.depuzel@suse.compuzel@novell.comcdenicolo@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.compuzel@novell.comcoolo@novell.compuzel@novell.compuzel@novell.compuzel@suse.cz- Allow --syslog option in daemon mode (bsc#1033081). * By default, the status messages are redirected to /var/log/fetchmail. The syslog option or no-logging are also available.- Made the helper script introduced in last change return exit status 5 on configuration errors instead of 1, which should make it a bit less confusing (bsc#979534)- Made /etc/sysconfig/fetchmail work again after a botched systemd conversion that ignored the file altogether (bsc#905673) - Removed the FETCHMAIL_USER setting in favor of editing the systemd service file (which should be copied to the respective location in /etc, and not edited in-place)- Cleanup with spec-cleaner - Remove support for <12.3 as it does not build anyway. - Fix krb5 switches - Provide proper rcbla controler for the service- build with PIE- Removed executable permission bits from fetchmail.service file. - Update the project url in the spec file after Berlios shutdown. - Remove dependency on gpg-offline as signature checking is implemented in the source validator.- fix bashism in postun script- added necessary macros for systemd files- Add systemd support for openSUSE >= 12.3- added offline gpg verification - update to 6.3.26 [#] CRITICAL BUG FIX for setups using "mimedecode": * The mimedecode feature failed to ship the last line of the body if it was encoded as quoted-printable and had a MIME soft line break in the very last line. Reported by Lars Hecking in June 2011. * Bug introduced on 1998-03-20 when the mimedecode support was added by ESR before release 4.4.1 through code contributed by Henrik Storner. Workaround for older releases: do not use mimedecode feature. * Earlier versions of this NEWS file claimed this bug fixed in fetchmail-6.3.23, but it was not. * Fixes Launchpad Bug#1171818.- update to 6.3,25 [#] CRITICAL AND REGRESSION FIXES * Plug a memory leak in OpenSSL's certificate verification callback. This would affect fetchmail configurations running with SSL in daemon mode more than one-shot runs. Reported by Erik Thiele, and pinned by Dominik Heeg, fixes Debian Bug #688015. This bug was introduced into fetchmail 6.3.0 (committed 2005-10-29) when support for subjectAltName was added through a patch by Roland Stigge, submitted as Debian Bug#201113. * The --logfile option now works again outside daemon mode, reported by Heinz Diehl. The documentation that I had been reading was inconsistent with the code, and only parts of the manual page claimed that --logfile was only effective in daemon mode. [#] BUG FIXES * Fix a memory leak in out-of-memory error condition while handling plugins. Report and patch by John Beck (found with Parfait static code analyzer). * Fix a NULL pointer dereference in out-of-memory error condition while handling plugins. Report and patch by John Beck (found with Parfait static code analyzer). [#] CHANGES * Improved reporting when SSL/TLS X.509 certificate validation has failed, working around a not-so-recent swapping of two OpenSSL error codes, and a practical impossibility to distinguish broken certification chains from missing trust anchors (root certificates). * OpenSSL decoded errors are now reported through report(), rather than dumped to stderr, so that they should show up in logfiles and/or syslog. * The fetchmail manual page no longer claims that MD5 were the default OpenSSL hash format (for use with --sslfingerprint). Reported by Jakob Wilk, PARTIAL fix for Debian Bug#700266. * The fetchmail manual page now refers the user to --softbounce from the SMTP/ESMTP ERROR HANDLING section. Reported by Anton Shterenlikht.- update to 6.3.23 [#] REGRESSION FIXES * Fix compilation with OpenSSL implementations before 0.9.8m that lack SSL_CTX_clear_options. Patch by Earl Chew. Note that the use of older OpenSSL versions with fetchmail is unsupported and * not* recommended. [#] BUG FIXES * Fix combination of --plugin and -f -. Patch by Alexander Zangerl, to fix Debian Bug#671294. * Clean up logfile vs. syslog handling, and in case logfile overrides syslog, send a message to the latter stating where logging goes. [#] CHANGES * The build process can now be made a bit more silent and concise through ./configure --enable-silent-rules, or by adding "V=0" to the make command. [#] WORKAROUNDS * Make Maillennium POP3 workarounds less specific, to encompass Maillennium POP3/UNIBOX (Maillennium V05.00c++). Reported by Eddie via fetchmail-users mailing list, 2012-10-13. [#] TRANSLATION UPDATES- do not use useradd -o without -u- update to 6.3.22 [#] SECURITY FIXES * CVE-2012-3482 (bnc#775988) * CVE-2011-3389 [#] BUG FIX * The Server certificate: message in verbose mode now appears on stdout like the remainder of the output. Reported by Henry Jensen, to fix Debian Bug #639807. * The GSSAPI-related autoconf code now matches gssapi.c better, and uses a different check to look for GSS_C_NT_HOSTBASED_SERVICE. This fixes the GSSAPI-enabled build on NetBSD 6 Beta. [#] CHANGES * The security and errata notices fetchmail-{EN,SA}-20??-??.txt are now under the more relaxed CC BY-ND 3.0 license (the noncommercial clause was dropped). The Creative Commons address was updated. * The Python-related Makefile.am parts were simplified to avoid an automake 1.11.X bug around noinst_PYTHON, Automake Bug #10995. * Configuring fetchmail without SSL now triggers a configure warning, and asks the user to consider running configure --with-ssl. [#] WORKAROUNDS * Some servers, notably Zimbra, return A1234 987 FETCH () in response to a header request, in the face of message corruption. fetchmail now treats these as temporary errors. Report and Patch by Mikulas Patocka, Red Hat. * Some servers, notably Microsoft Exchange, return "A0009 OK FETCH completed." without any header in response to a header request for meeting reminder messages (with a "meeting.ics" attachment). fetchmail now treats these as transient errors. Report by John Connett, Patch by Sunil Shetye.- dont't require, just suggest smtp_daemon -- fetchmail does run fine (and much safer) with e.g. procmail as mda.- add automake as buildrequire to avoid implicit dependency- Apply packaging guidelines (remove redundant/obsolete tags/sections from specfile, etc.)- repack upstream tarball without fetchmail-{SA,EN}-*.txt (bnc#713698) - add README-security.txt- update to fetchmail-6.3.21 - critical bug fix - The IMAP client no longer inserts NUL bytes into the last line of a message when it is not closed with a LF or CRLF sequence. Reported by Antoine Levitt. As a side effect of the fix, and in order to avoid a full rewrite, fetchmail will now CRLF-terminate the last line fetched through IMAP, even if it is originally not terminated by LF or CRLF. This bears no relevance if your messages end up in mbox, but adds line termination for storages (like Maildir) that do not require that the last line be LF- or CRLF-terminated.- license update: GPLv2+ remove licenses " Other uncritical OpenSource License ; Public Domain, Freeware"- update to fetchmail-6.3.20 [#] SECURITY BUG FIXES - CVE-2011-1947 (bnc#697368): STARTTLS: Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the set timeout (default five minutes) now. This was reported missing, with observed fetchmail freezes beyond a week, by Thomas Jarosch. See fetchmail-SA-2011-01.txt for further details. [#] BUG FIXES - IMAP: Do not search for UNSEEN messages in ranges. Usually, there are very few new messages and most of the range searches result in nothing. Instead, split the long response to make the IMAP driver think that there are multiple lines of response. - Do not print "skipping message" for old messages even in verbose mode. If there are too many old messages, the logs just get filled without any real activity. - Build: fetchmail now always uses its own MD5 implementation rather than trying to find a system library with matched header. The library and header variants found on systems are too diverse, and the code size saving is not worth any more wasted user or programmer time. [#] CHANGES - Call strlen() only once when removing CRLF from a line. - fetchmail sets Internet domain sockets to "keepalive" mode now. Note that there is no portable way to configure actual timeouts for this mode, and some systems only support a system-wide timeout setting. fetchmail does not attempt to tune the time spans of keepalive mode. - remove build-time dependency on ed - use spec-cleaner- update to fetchmail-6.3.19 - bugfix release * When specifying multiple local multidrop lists, do not lose wildcard flag. (Affects "user foo is bar baz * is joe here") * In multidrop configurations, an asterisk can now appear anywhere in the list of local users, not just at the end. * In multidrop mode, header parsing is now more verbose in -vv mode, so that it becomes possible to see which header is used. * Make --antispam work from command line (these used to work in rcfiles). * Smoke test XHTML 1.1 validation, and if it fails, skip validating HTML documents. Skip validating Mailbox-Names-UTF7.html. Several systems have broken XHTML 1.1 DTD installations that jeopardize the build. * Send a NOOP only after a failed STARTTLS in IMAP. * GSSAPI verbose/debug syslog to INFO severity. Do STARTTLS/STLS negotiation in IMAP/POP3 if it is mandatory even if the server capabilities do not show support for upgradation to TLS. To use this, configure --sslproto tls1. * IMAP: Understand empty strings as FETCH response, seen on Yahoo. Note that fetchmail continues to expect literals as FETCH response for now.- update to fetchmail-6.3.18 [#] SECURITY IMPROVEMENTS TO DEFANG X.509 CERTIFICATE ABUSE * Fetchmail now only accepts wildcard certificate common names and subject alternative names if they start with "*.". Previous versions would accept wildcards even if no period followed immediately. * Fetchmail now disallows wildcards in certificates to match domain literals (such as 10.9.8.7), or wildcards in domain literals ("*.168.23.23"). The test is overly picky and triggers if the pattern (after skipping the initial wildcard "*") or domain consists solely of digits and dots, and thus matches more than needed. * Fetchmail now disallows wildcarding top-level domains. [#] CRITICAL BUG FIXES AND REGRESSION FIXES * Fetchmail 6.3.15, 6.3.16, and 6.3.17 would pick up libmd5 to obtain MD5* functions, as an effect of an undocumented Solaris MD5 fix. This caused all MD5-related functions to malfunction if, for instance, libmd5.so was installed on other operating systems as part of libwww on machines where long isn't 32-bits, i. e. usually on 64-bit computers. * Fetchmail 6.3.17 warned about insecure SSL/TLS connections even if a matching --sslfingerprint was specified. This is an omission from an SSL usability change made in 6.3.17. * Fetchmail will now apply timeouts to the authentication stage. This stage encompasses STARTTLS/STLS negotiation in IMAP/POP3. Reported missing by Thomas Jarosch. * Fetchmail now cancels GSSAPI authentication properly when encountering GSS errors, such as no or unsuitable credentials. It now sends an asterisk on a line by its own, as required in SASL. This fixes protocol synchronization issues that cause Authentication failures, often observed with kerberized MS Exchange servers. * Other fixes.- update to fetchmail-6.3.17 [#] SECURITY FIX * CVE-2010-1167: Fetchmail before release 6.3.17 did not properly sanitize external input (mail headers and UID). [#] FEATURES * Fetchmail now supports a --sslcertfile option to specify a "CA bundle" file (a file that contains trusted CA certificates). * Fetchmail now supports a FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS environment variable to force loading the default SSL CA certificate locations even if --sslcertfile or --sslcertpath is used. If neither option is in effect, fetchmail loads the default locations. [#] REGRESSION FIX * Fix string handling in rcfile scanner, which caused fetchmail to misparse a run control file in certain circumstances. [#] BUG FIXES * Plug memory leak when using a "defaults" entry in the run control file. * Do not print SSL certificate mismatches unless verbose or - -sslcertck is enabled. * Do not lose "set invisible" in fetchmailconf. (Michael Barnack) - drop fetchmail-SA-2010-02.patch (in upstream)- add fetchmail-SA-2010-02.patch (bnc#597673)- make it possible change default fetchmailrc location using new sysconfig option - do not change owner of fetchmailrc in post- update to fetchmail-6.3.16 [#] BUG FIX * Fix --interface option, broken in 6.3.15. [#] CHANGE * Call OpenSSL_add_all_algorithms(). This is needed to support non-mandatory algorithms in certificates.- update to fetchmail-6.3.15 [#] FEATURE * Fetchmail now supports a bad-header command line or rcfile option that takes exactly one argument, accept or reject (default). [#] BUG FIXES * In the rcfile, recognize "local" as abbreviation for "localdomains", as documented. * Do not close stdout when using mda and "bsmtp -" at the same time. * Log operating system errors when BSMTP writes fail. * Fix verbose mode progress formatting regression from 6.3.10; SMTP trace lines were no longer on a line of their own. Reported by Melchior Franz. * Check seteuid() return value and abort running MDA if switch fails. * Set global flags in a consistent manner. Make --nosoftbounce and - -nobounce work from command line (these used to work in rcfiles). Reported and fix confirmed working by N.J. Mann. (Sunil Shetye)- update to fetchmail-6.3.14 [#] SECURITY FIXES * SSL/TLS certificate information is now also reported properly on computers that consider the "char" type signed. Fixes malloc() buffer overrun. Workaround for older versions: do not use verbose mode. [#] BUG FIXES * The IMAP client no longer skips messages from several IMAP servers including Dovecot if fetchmail's "idle" is in use. Causes were that fetchmail (a) ignored some untagged responses when it should not (b) relied on EXISTS messages in response to EXPUNGE, which aren't mandated by RFC-3501 (the IMAP standard) and aren't sent by Dovecot either. Fix by Sunil Shetye (the fix also consolidates IMAP response handling, improving overall robustness of the IMAP client), bug report and testing by Matt Doran, with further hints from Timo Sirainen. * The SMTP client now recovers from errors (such as servers dropping the connection after errors) when sending an RSET command. Fix by Sunil Shetye. Report by James Moe. * The IMAP client now uses "SEARCH UNSEEN" rather than "SEARCH UNSEEN NOT DELETED" again on IMAP2, to fix a regression in fetchmail 6.2.5 reported by Will Stringer in June 2004. (Sunil Shetye) * The IMAP client now uses "SEARCH UNSEEN UNDELETED" on IMAP4 and IMAP4r1 servers (Sunil Shetye). * Workaround: The IMAP client now falls back to "FETCH n:m FLAGS" if the server does not support "SEARCH". (Sunil Shetye) * The IMAP client now requests message numbers in batches of 1,000 to avoid problems if there are more than 1860 unseen messages. (Sunil Shetye) Note that this wasn't security relevant because fetchmail would only read up to the maximum buffer size and leave the remainder of the string unread, going out of synch afterwards. * Stricter validation of IMAP responses containing byte or message counts. - fetchmail 6.3.13 : [#] REGRESSION FIXES * The multiline SMTP error fix in release 6.3.12 caused fetchmail to lose message codes 400..599 and treat all of these as temporary error. This would cause messages to be left on the server even if softbounce was turned off. Reported by Thomas Jarosch.- update to fetchmail-6.3.12 [#] REGRESSION FIXES * The CVS-2009-2666 fix in fetchmail release 6.3.11 caused a free() of unallocated memory on SSL connections, which caused crashes or program aborts on some systems (depending on how initialization and free() of unallocated memory is handled in compiler and libc). Workaround for older versions: run in verbose mode. Patch courtesy of Thomas Heinz, fixes Gentoo Bug #280760. This regression affected only the 6.3.11 release, but not the patch that was part of the security announcement fetchmail-SA-2009-01. [#] BUG FIXES * Fix error reporting for GSSAPI on Heimdal (h5l) Kerberos. * Look for MD5_Init in libcrypto rather than libssl, fixes Gentoo Kerberos builds; fixes upstream parts of Gentoo Bugs #231400 and #185652, and fixes BerliOS Bug #16134. * Report multiline SMTP errors properly, reported by Earl Chew; fixes Debian Bug [#569899], reported by Akihiro Terasaki. Note: This fix introduced a regression, fixed in 6.3.13. * Replace control characters in SMTP replies by '?'. * Fetchmailconf: Fix descriptions for smtpaddress and smtpname options; smtpaddress is for RCPT TO, not MAIL FROM. Found by Gerard Seibert. - update to fetchmail-6.3.13 [#] REGRESSION FIXES * The multiline SMTP error fix in release 6.3.12 caused fetchmail to lose message codes 400..599 and treat all of these as temporary error. This would cause messages to be left on the server even if softbounce was turned off. Reported by Thomas Jarosch. - drop fetchmail-6.3.11-fix-invalid-free.patch (fixed upstream)- add fetchmail-6.3.11-fix-invalid-free.patch - fix https://bugs.gentoo.org/280760- use new python macros- update to 6.3.11 [#] SECURITY BUGFIXES * CVE-2009-2666: SSL NUL prefix impersonation attack through NULs in a part of a X.509 certificate's CommonName and subjectAltName fields. These fields use opaque strings with a separate length field, so that the NUL character isn't a special character inside the certificate. Fetchmail, being written in the C language, used to treat these strings as C strings nonetheless, so that the domain comparison would end at the first embedded NUL character, rather than at the real end of the string. Fetchmail will now abort certificate verification as failed if NULs are encountered inside either of these fields regardless of their position, and drop the connection even if --sslcertck is not used, because NUL is not a valid character in legitimate DNS names. See fetchmail-SA-2009-01.txt for details, including a minimal patch. [#] BUGFIXES * Remove the spurious message "message delimiter found while scanning headers". RFC-5322 syntax states that the delimiter is part of the body, and the body is optional. * Convert all non-printable characters in certificate Subject/Issuer Common Name or Subject Alternative Name fields to ANSI-C hex escapes (\xnn, where nn are hex digits).- update to 6.3.10 (final version)- update to 6.3.10-beta1 [#] INCOMPATIBLE BUGFIXES AND CHANGES: * Fetchmail no longer drops permanently undelivered messages by default, to match historic documentation. It does this by adding a new "softbounce" option, see below. * There is a new "softbounce" global option that prevents the deletion of messages that have not been forwarded. It defaults to "true" for fetchmail 6.3.X in order to match historic documentation. This may change its default in the next major release. * For other changes, please see the package changelog - update fetchmail-6.3.8-smtp_errors.patch (partially upstreamed)/bin/sh/bin/sh/bin/sh/bin/shlamb12 1520321837  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstcacsdadeeleneoesfifrgliditjanlplptrusksqsvtrvizh6.3.26-21.3.16.3.26-21.3.16.3.26-21.3.1   !"#$%fetchmailrcfetchmailfetchmailfetchmail-systemd-execfetchmail.servicefetchmail.confrcfetchmailfetchmailCOPYINGFAQFEATURESMailbox-Names-UTF7.htmlMailbox-Names-UTF7.txtNEWSNOTESOLDNEWSREADMEREADME.NTLMREADME.SSLREADME.SSL-SERVERTODOcontrib007705.html007713.html008523.html010015.htmlPopDel.manualPopDel.pyREADMEREADME.getmailREADME.mold_removerdebian_rcdelete-laterdelete-later.READMEdominofetchmail-mode.elfetchmail.logrotatefetchmaildistribfetchmailnochda.plfetchsetupfetchspoolgetfetchmailgetfetchmail.plgetmailgotmailgotmail.awkgotmail.confgotmail.html.awkip-uploginlogoutmaildaemonmailqueue.plmold_remover.pymultidropnovellpoptestpreauth-harnessrawlog.patchredhat_rcrunfetchmailsm-hybridstart_dynamic_ppptoprocmailzsh-completiondesign-notes.htmlesrs-design-notes.htmlfetchmail-EN-2010-03.txtfetchmail-FAQ.htmlfetchmail-FAQ.pdffetchmail-SA-2005-01.txtfetchmail-SA-2005-02.txtfetchmail-SA-2005-03.txtfetchmail-SA-2006-01.txtfetchmail-SA-2006-02.txtfetchmail-SA-2006-03.txtfetchmail-SA-2007-01.txtfetchmail-SA-2007-02.txtfetchmail-SA-2008-01.txtfetchmail-SA-2009-01.txtfetchmail-SA-2010-01.txtfetchmail-SA-2010-02.txtfetchmail-SA-2011-01.txtfetchmail-SA-2012-01.txtfetchmail-SA-2012-02.txtfetchmail-features.htmlfetchmail-man.htmltodo.htmlfetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.mofetchmail.1.gzsysconfig.fetchmailfetchmailfetchmail/etc//etc/logrotate.d//usr/bin//usr/lib//usr/lib/systemd/system//usr/lib/tmpfiles.d//usr/sbin//usr/share/doc/packages//usr/share/doc/packages/fetchmail//usr/share/doc/packages/fetchmail/contrib//usr/share/locale/ca/LC_MESSAGES//usr/share/locale/cs/LC_MESSAGES//usr/share/locale/da/LC_MESSAGES//usr/share/locale/de/LC_MESSAGES//usr/share/locale/el/LC_MESSAGES//usr/share/locale/en_GB/LC_MESSAGES//usr/share/locale/eo/LC_MESSAGES//usr/share/locale/es/LC_MESSAGES//usr/share/locale/fi/LC_MESSAGES//usr/share/locale/fr/LC_MESSAGES//usr/share/locale/gl/LC_MESSAGES//usr/share/locale/id/LC_MESSAGES//usr/share/locale/it/LC_MESSAGES//usr/share/locale/ja/LC_MESSAGES//usr/share/locale/nl/LC_MESSAGES//usr/share/locale/pl/LC_MESSAGES//usr/share/locale/pt_BR/LC_MESSAGES//usr/share/locale/ru/LC_MESSAGES//usr/share/locale/sk/LC_MESSAGES//usr/share/locale/sq/LC_MESSAGES//usr/share/locale/sv/LC_MESSAGES//usr/share/locale/tr/LC_MESSAGES//usr/share/locale/vi/LC_MESSAGES//usr/share/locale/zh_CN/LC_MESSAGES//usr/share/man/man1//var/adm/fillup-templates//var/lib//var/log/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:7859/openSUSE_Leap_42.3_Update/0260b1bee799edaeec86cb662be74fdd-fetchmail.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linux      emptyASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 3.0.0, BuildID[sha1]=08416d7d834450f7546743893a69d506174846a0, strippedPOSIX shell script, ASCII text executabledirectoryUTF-8 Unicode textHTML document, UTF-8 Unicode text, with CRLF, LF line terminatorsC source, ASCII textHTML document, ASCII textC++ source, ASCII texta /usr/bin/expect -f script, ASCII text executablea /usr/bin/perl -w script, ASCII text executableLisp/Scheme program, ASCII text, with very long linesPerl script, ASCII text executableBourne-Again shell script, ASCII text executablePython script, ASCII text executableunified diff output, ASCII textnews or mail, ASCII textXML document texttroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)RRRRR RRRRR RRRRRRRR RRRRRR?Kz"m/ $smtp_daemon?]"k%a覼 N3U@LӢ:1pV Qj!)YH93V( fHw Y.Sf뽷GW{}S% Y=}G1 x (j"yisxv/[5U}?F@qS/? LLfNJvViH8|h]AMb,jε֋w05Xv~ʷK~+n; ^,!#쐔9R"dwȳR`ưĐe|t:I$Tp]Wcr7&yJS hu|\ɏ)ʜUP- R' ~R-Îd\Iϖ~wݙZ{-n}´$5gX(;?25^XTN+`|}Ȃu`bZ9d>L[XoΟ |+Kn TXeIVjq(0~}p#CSoZUrw2?VĂNn NhXk+`Er`^3hcO7l䡏z2Z5?{ єIxkyQ(Eqvj}!nϚϼ{xSLFZG[OX8Qn=znؗY! 4y]Jw];5F?-vL!b0ar]FjEz 7 ^) <ǭKa)u:D3yLvWu>l 26br›YXkqzͫO,̟fv~€E}Z{cUU:*xR- 2-b3s+A@Q`iʔ)|!=W><?2!,f(^ݑ<|/ĕF[yiI26B4,1;ıUC\ǮVM'gr%Z .aɫ'Ycלڭ%scvϝ9" ۵'Q< L'Wn?dFs{%:BEa,n-b{  &ѵ130bRKH>zkc:&0DQ#Q87jDce.+axˈ%!5c>鳑A@Yֵ2TvbEy`aF`l-hlY~$a2~oʠZrپi81qjAk#@Dt`Jlq>3=jȊvn&u'  ",

)vb!<bֱeV-RmDQ򘓝dL`\k 6& -huhP3[}{#t֥?$a f$ ;lw ߉Til/ )Ѐ]{_ $  *-B,^NFd"6$x߀ߔ JEߣW 0DgyVQ4Aie(~VڪJKь08'Ay^;%T n {6@r88` nRel02&0{ h WNlr{̨map#{4LXD.a]fu="}epLgG!1gD#<$ >bZLlG4䋙>ka?hӘ1gZ>SȺX13|J8V@>pT덴' 4DNbt;BgkPI"U6F!uNxC ԾzŸQPsbF}H\/_ 10o(ypIF;,SsԠOefF͸FGB` TOK CnNxIr>4𶮮xW㫸ϰqUO^l/+7c"s#zUm$-X`(z&-o[ýC$IZN<UOD6n([KZ_NxReϥ)6\IDQ#dӰw(Y';hA8n 8N̵{}xY1PfJD=\|49 F/D-5QT6>xP ʈY3a < !D3be| ܀d-5ɼG:ًr)~0ްnA?kN'RZŹu̇9 /e"|,Z(, o\{mC<:xsKsd]A5Esτ*Ob,B\%ɚ̰-^flP9U@7~ T3$R7sqS-X;h1T#ВZ-Ptcʑs~Q𦏢\W.3:.G0*޵_^IcH(ya1hKH9{t[+f~d<*u^L{&M+:BiHEBir@`_PEQ@R#s'Dw|jd o͉_qH/K:S}JNSɗq{GCQF'AΖ'woXoqxv3 #И6xoy4w;Z0E i[;}B&wxL# o~ϭ[[0=Ay5o쒦R m@DOiu Ә~@oZٖo_(<&WW- O1{CM1t9J` .Hfj8O)!-;(Ժeiђ?V՘0]Ylg#(!\:vHm<()-VA1s]pDLjF ^;lי"=fV)I>}I=4W\ Qhz8A{*::ɡ&u悬S GXVe2rdF)9:Z#z# |+5j4S>w}5Cg'|ؤYRj) A*zGMEx-4HBeiSfla6b]&wȉcIf63׎]Cnr Wz>ղ *"M$J;t1ƀƞ/DAj`)=ĦrGO^xN\t@v|z'EW5Ġx{/?l%(ar9Uܜ9,y7 ^GTptOnڤ^X[T܈ܖ& 4F\%bsx* s̵̗pk#WD.F/ฃ5׿{CVU7p(Vu$'8-kq-sjBoJډ|=s#<,`,i#S^e(8ZEM r$Tdm7)T<y"Zk`I-.~\ Ӛr"SsI6,<*EhYbwϬ;OWC'D EDrlh۵0x.\h/Fָ|p!:*dN*^8;6?T. $NC$H /ޒȗ(Q1r\{ӖVVD9פ}]{N,YGzj i^{H'b玬w!Pq>^^?1QXYA-hf|I6Dhx\a:ONUo=DEV)S"fMC Gs 6Ÿ3)X'S? U  xM\{R. 45{ӝ̼F$Q-vSԹ˴Znf?S2-fmdLF ؞R؈DXP\Mc[sV|= Wեͣt5Ñ3 z -i4B e. сΚ'e^ 99qb瘬S:YK9H D&ϯr!<UjhsYgN!y$hvd d8oUiTEL˶U ^MJnug-,>u:jqGuvVܽ6Χ.2@Lk>p$kS@lK?;!2ŁD޹H"՗lb7Mohq,w97,<S]  A1KotqVн>1pIB|=HU$B1Fqf ʧmk;Xs .2J;EզWɲ_䤌Ѥ)ϮffTcZZ ^ATud>!xDci'6 QW_ssߛƩdĥljvmHbۜYE7䜜 n!Aji؎oѾ+;Dn)E-HE:n=G|QL󬁈XFuYzM32?Z7?_3u VQeT&7OGGgtSYU>L4\R1%LrܫGit _2?c`8F14WA/X z$,һ'XMyW:iӆc[XWd/ĺ z˱%g7n'Upli5q "Ƣ 21QB`13x $E4pد򐥮IE.EZ@6G}]Md,1Ew3S ~JKqȚ.k9-&2ņ))ȶq ^}] Ev" .gLe1ABa)G5]tWXs~sq^\cQUj T ~a": T_a2lvFg ׅc},6%pؗJ\?|?6ڥAx4͵py?ΐBܛBSFcvy}ӳ5B= UgFm:@[O2#c1nz#"u,Sjk;k<_R20P[W%I.9{hȞǙt)^h3(?Tǫ`ݦ jf^Jb-%ԹI_;iDI{Ffԉ*&*$G}{)BKRr P*CjF(nD^(sNVR׽T[Qӹ8nTS (E7BA]=@GB|(ϥwqgIHT>0fU|D-^|GQ-=MS֊q0ˇ"@vi+A`#@fV2 `ewd#~&zo$C׆8>Li_XN@7;k (@ifp˻s#ʣ?- &SrH u*ڤ:423.;ÓnA &>Uf\J8H] =:t=wXW5l} zy=PkbBZG-,j_Mw(^/yTq%ddR]XcXsNG6dbr֯K: `(Gh8_ՠH q/[WIӸl=oȑF[}:Z2zCwtq+~kO}k =/(q%I䂺kuCB/\^-UTg]>{dJPN(A_۸>Th +TO9XܭdvwST@KdQyXCސ?$%Lpg靕%]])K$ /As|kn3pIo@5B6VebSꞑ|/z%,bɠ)y&tw\#4پe~|}ډDOi1S)]" l,!eP(E#0P.W+6Jl,i JS]ܴqpkmGt9!uӸϭgi9%j{U⻊/:OUEHuQ΂Ԝ|h"ph\C \0дd yQXEZe[ ѩO4`Œp:͜_U`d{3uݴ2ctaΦOOZFn֗LuH'XdOAlnF_~ż~9oQugK LW2?7`^$E4nɗ뉁N@nqsaLR?Yqe{ ,4H[ uk}Btʂ3JGrj-$NrY [ؖ-{w`Bʪooʟ.C`|m+K^>5? c)kծXtuW?7;V4.$[=;Սp~ 4Žv}Vx4m ϔq+͘qP"K8ۦ!ERAtڌ@HiXya 2N-QΛtoRߗހ߽ɇ%FEhiW|܍$g';cvƔi~~\qfA >5/{7ziHsMat;8 t)~4EO"Ltgi"(:D=ܳ|TIkTc ݂ɶݞql:%ƹr̉ :s&?B}Fe ͸fhu<+~`0EgU,wYye`%&S&Ou\& WH ;N [epF m Ruk]R- i#)B7XEkE ٪23A HWS3r)uÍXTЄ*BPԸ ,~ol ߽"]dmӰo5@k ! Ou3!kl4Iq7Jy&7B\܊Z5vpxaAھ%MjY>$ qBgG)8Iw4KT