-
dovecot (1:2.3.21+dfsg1-3) unstable; urgency=medium
* [883dc1a] Add libtirpc-dev to build-depends (Closes: #1065213)
-- Noah Meyerhans <email address hidden> Sat, 09 Mar 2024 22:31:22 -0800
-
dovecot (1:2.3.21+dfsg1-2) unstable; urgency=medium
[ Christian Göttsche ]
* [a2fbc2f] split-protocols.patch: patch all-settings.c to successfully build twice (Closes: #1044797)
[ Noah Meyerhans ]
* [70e4426] Drop arm64 from libunwind builddep arch list
-- Noah Meyerhans <email address hidden> Mon, 30 Oct 2023 13:40:35 -0700
-
dovecot (1:2.3.21+dfsg1-1) unstable; urgency=medium
[ Noah Meyerhans ]
* [753b4fe] Don't build the unmaintained lucene fts plugin (Closes: #1040884)
* [5597486] New upstream version 2.3.21+dfsg1
[ Christian Göttsche ]
* [b8017f1] Cleanup temporary build files
* [35e1afe] Silence prototype conflicts
* [8dda8b9] Update Lintian overrides
* [6bae82f] Bump to standards version 4.6.2 (no further changes)
* [1f973d2] Mark hurd patch forwarded
-- Noah Meyerhans <email address hidden> Sat, 14 Oct 2023 08:52:10 -0700
-
dovecot (1:2.3.20+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [fb2a5b7] d/rules: enable stack clash protection
* [2666970] d/patches: bump _FORTIFY_SOURCE to level 3
[ Noah Meyerhans ]
* [eab5171] New upstream version 2.3.20+dfsg1
* [d6135a4] Drop dependency on obsolete lsb-base package
-- Noah Meyerhans <email address hidden> Sun, 25 Jun 2023 16:17:56 -0700
-
dovecot (1:2.3.19.1+dfsg1-2.1) unstable; urgency=medium
* Non-maintainer upload.
* [b02ebc9] Don't use deprecated crypt module.
(closes: #1028513)
-- Bas Couwenberg <email address hidden> Fri, 20 Jan 2023 07:01:26 +0100
-
dovecot (1:2.3.19.1+dfsg1-2) unstable; urgency=medium
[ Christian Göttsche ]
* [281fb2c] d/patches: cherry-pick fix for CVE-2022-30550 (Closes: #1016351)
* [9c58e71] d/patches: fix uninitialized read in doveadm-oldstats
* [a76a24d] d/control: bump to standards version 4.6.1 (no further changes)
* [4aaaa8b] Update Lintian overrides
-- Noah Meyerhans <email address hidden> Fri, 29 Jul 2022 19:58:28 -0700
-
dovecot (1:2.3.19.1+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [e40f93f] d/patches: avoid usage of PATH_MAX not available on hurd
* [19e00cd] d/rules: enable backtrace generation
* [5bf1c43] d/patches: debug flaky unit test
[ Noah Meyerhans ]
* [b73422f] New upstream version 2.3.19.1+dfsg1
* [c88bfc0] Update changelog for 1:2.3.19.1+dfsg1-1 release
* [ca59548] Update lintian overrides
* [d6406c2] d/copyright: update declarations for current maintainers
-- Noah Meyerhans <email address hidden> Wed, 22 Jun 2022 09:27:01 -0700
-
dovecot (1:2.3.19+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [0d29e45] d/rules: enable LTO via DEB_BUILD_MAINT_OPTIONS instead of custom flags
* [560cceb] d/source/lintian-overrides: update very-long-line-length-in-source-file overrides
* [b99d09e] d/copyright: update years
* [9ee8271] d/dovecot-core.prerm: drop as superseded by debhelper
* [907f85c] d/maintscripts: update
* [2b38240] d/dovecot-core.postinst: drop support for version skips
* [dcb76d1] d/dovecot-core.postinst: only link certs if existent (Closes: #1009872)
* [d223bbd] d/patches: add patch to support openssl 3.0 (Closes: #996273)
[ Noah Meyerhans ]
* [9f3175e] New upstream version 2.3.19+dfsg1
-- Noah Meyerhans <email address hidden> Sun, 05 Jun 2022 18:29:18 +0000
-
dovecot (1:2.3.18+dfsg1-1) unstable; urgency=medium
[ Noah Meyerhans ]
* [36966c8] New upstream version 2.3.18+dfsg1
* [042bda4] Refresh patches for 1:2.3.18+dfsg1-1
-- "Noah Meyerhans" <email address hidden> Thu, 10 Feb 2022 20:05:50 +0000
-
dovecot (1:2.3.17.1+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [40b0010] New upstream version 2.3.17+dfsg1
* [3c377e0] New upstream version 2.3.17.1+dfsg1
* [e2f1ce2] d/patches: rebase and drop upstream applied ones
* [533b7ad] d/control: bump to standards version 4.6.0 (no further changes)
* [02ed6cf] debian: reduce Lintian issues
* [bb3ae48] d/salsa-ci.yml: skip cross build and do not fail on Lintian
warnings
* [bcda7e4] d/control: build against Lua 5.4
* [9eed0dd] d/control: enable libunwind support on available archs
* [1990699] d/patches: cherry-pick memory leak commit
* [426df46] d/patches: cherry-pick imapsieve fix
* [e3d0747] d/patches: add patch for LTO by avoiding unaligned access
-- Noah Meyerhans <email address hidden> Tue, 14 Dec 2021 09:24:23 -0800
-
dovecot (1:2.3.16+dfsg1-3) unstable; urgency=medium
* [7b858b6] Fix FTBFS on mips(64)el. Stacktrace generation on these
architectures requires -funwind-tables, as with 32-bit arm.
-- Noah Meyerhans <email address hidden> Thu, 16 Sep 2021 08:41:27 -0700
-
dovecot (1:2.3.16+dfsg1-2) unstable; urgency=medium
[ Christian Göttsche ]
* [e1e9ece] d/patches: rework backtrace test patch
* [be404bf] d/patches: add big-endian patch
-- Noah Meyerhans <email address hidden> Fri, 10 Sep 2021 16:10:50 -0700
-
dovecot (1:2.3.16+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [ff4a227] New upstream version 2.3.14+dfsg1
* [963fa3b] New upstream version 2.3.15+dfsg1 (Closes: #991323, #983510)
* [5e0c898] d/watch: adjust dversionmangle for dfsg suffix
* [9ffb0f5] d/patches: update
* [850e1d6] New upstream version 2.3.16+dfsg1
* [7140b87] d/patches: rebase patches
* [fb1b77e] d/rules: enable LTO
* [ce7055d] d/control: add libsystemd-dev dependency
* [db93263] d/copyright: drop unused section
* [aeec1e8] d/rules: update how to set systemdsystemunitdir
* [ebe9709] d/patches: resolve compiler warnings
* [19b2bb0] d/changelog: bump to 1:2.3.16+dfsg1-1
* [58a4078] d/patches: update 32bit warnings patch
[ Noah Meyerhans ]
* [f217c2e] Fix indexer crash
* [b075317] Import upstream patch for indexer crash on client disconnect
* [36e8740] drop debian/dovecot-core.maintscript
-- Noah Meyerhans <email address hidden> Thu, 02 Sep 2021 13:22:16 -0700
-
dovecot (1:2.3.13+dfsg1-2) unstable; urgency=high
* Import upstream fixes for security issues (Closes: #990566):
- CVE-2021-29157: Path traversal issue allowing an attacker with
access to the local filesystem can trick OAuth2 authentication into
using an HS256 validation key from an attacker-controlled location
- CVE-2021-33515: Sensitive information could be redirected to an
attacker-controlled address because of a STARTTLS command injection
bug in the submission service
-- Noah Meyerhans <email address hidden> Tue, 20 Jul 2021 08:05:19 -0700
-
dovecot (1:2.3.13+dfsg1-1) unstable; urgency=medium
[ Christian Göttsche ]
* [6829237] New upstream version 2.3.13 (Closes: #979363)
- CVE-2020-24386: IMAP hibernation allows accessing other peoples mail
- CVE-2020-25275: MIME parsing crashes with particular messages
* [6d25736] Add libzstd-dev to build-dependencies (Closes: #969165)
* [5956798] Rebase patches
* [2cb63c3] Bump to standards version 4.5.1 (no further changes)
* [548bac5] Drop unmatched copyright src/lib-ntlm/* wildcard
* [6f33f3f] Ignore package-contains-documentation-outside-usr-share-doc
false-positives
* [dde9c94] Handle removed configuration file in postinst
[ Pino Toscano ]
* [04a60e3] d/{control,rules}: disable apparmor support on !linux archs
(Closes: #951869)
[ Helmut Grohne ]
* [e5f9fcb] d/patches: improve cross-compile support (Closes: #979370)
-- Noah Meyerhans <email address hidden> Mon, 25 Jan 2021 15:38:17 -0800
-
dovecot (1:2.3.11.3+dfsg1-2) unstable; urgency=medium
[ Christian Göttsche ]
* [44770f6] Add patch for 32bit compiler warnings
* [053865a] Lintian: remove unused override
* [4ece2e1] Lintian: add forwarded header to Debian specific patches
* [67872b7] Lintian: ignore Debian only man page
* [d30bd7e] Lintian: tag manpage-without-executable got renamed to
spare-manual-page
* [3bdf952] Limit libcap-dev build-dependency to linux-any
* [28f6425] Drop acute accent in man page
* [8c15850] Add patch allowing GSSAPI containing NULL
-- Noah Meyerhans <email address hidden> Wed, 19 Aug 2020 12:06:07 -0700
-
dovecot (1:2.3.11.3+dfsg1-1) unstable; urgency=high
* New upstream release fixes security issues (Closes: #968302)
- CVE-2020-12100 - Receiving mail with deeply nested MIME parts leads to
resource exhaustion as Dovecot attempts to parse it.
- CVE-2020-12673 - Dovecot's NTLM implementation does not correctly check
message buffer size, which leads to reading past allocation which can
lead to crash.
- CVE-2020-12674 - Dovecot's RPA mechanism implementation accepts
zero-length message, which leads to assert-crash later on.
* Add libcap-dev to build-dependencies to support dropping linux
capabilities.
-- Noah Meyerhans <email address hidden> Thu, 13 Aug 2020 16:21:24 -0700
-
dovecot (1:2.3.10.1+dfsg1-2) unstable; urgency=medium
* Support sd_notify with systemd (Closes: #951722)
* Add necessary CFLAGS and LDFLAGS settings to ensure functional backtrace
generation. (Closes: #962630)
* Suppress additional library-not-linked-against-libc lintian warnings some
plugins as false-positives, observed on armel systems
[ Andreas Hasenack ]
* d/t/control, d/t/testmails: cherry-pick updated autopkgtests from
Ubuntu's 1:2.2.35-2ubuntu1:
- d/t/testmails: dropped the hardcoded "Ubuntu" name from the banner
text and made it distribution agnostic
- d/t/control: added lsb-release to test dependencies, used to get the
distribution name
-- Noah Meyerhans <email address hidden> Tue, 16 Jun 2020 08:29:02 -0700
-
dovecot (1:2.3.10.1+dfsg1-1) unstable; urgency=medium
* New upstream release addresses multiple security issues
- CVE-2020-10957
- CVE-2020-10958
- CVE-2020-10967
(Closes: #960963)
* Refresh patches
* Strip non-DFSG-compliant docs from .orig archives
* Incorporate a number of improvements to debian/ metadata contributed by
Christian Göttsche <email address hidden>
* Add <email address hidden> to Uploaders
* Work around flakiness in autopkgtest suite
* Suppress library-not-linked-against-libc lintian warnings some plugins as
false-positives
-- Noah Meyerhans <email address hidden> Wed, 10 Jun 2020 10:41:37 -0700
-
dovecot (1:2.3.7.2-1) unstable; urgency=medium
* [dcaf24e] New upstream version 2.3.7.2
- Fixes CVE-2019-11500 for dovecot-core
* [111beef] Update pigeonhole to 0.5.7.2
- Fixes CVE-2019-11500 for pigeonhole/managesieve
* [a422c4c] Bump Standards-Version to 4.4.0; no changes needed
* [56e37ed] Bump dh compat to 12; no changes needed.
- Drop d/compat in favor debhelper-compat B-D.
* [476edbd] Refresh dovecot_name.patch and ssl-cert-location.patch
* [9dc7904] Drop patches included in 2.3.7.2.
- CVE-2019-10691
- CVE-2019-11494
- CVE-2019-11499
- CVE-2019-7524
- avoid-double-closing-mysql.patch
- lib-master-test-event-stats-Use-PRIu64-format.patch
-- Apollon Oikonomopoulos <email address hidden> Thu, 29 Aug 2019 11:55:51 +0300
-
dovecot (1:2.3.4.1-5) unstable; urgency=medium
* [bd00402] Fix CVE-2019-11494 and CVE-2019-11499 (Closes: #928235)
- submission-login: fix null pointer dereference when client
disconnects during authentication (CVE-2019-11494)
- submission-login: fix assert-crash when receiving an invalid
authentication message over TLS (CVE-2019-11499)
-- Apollon Oikonomopoulos <email address hidden> Mon, 29 Apr 2019 23:35:05 +0300
-
dovecot (1:2.3.4.1-4) unstable; urgency=high
* [d04d4ba] Fix assert-crash in JSON encoder (CVE-2019-10691)
-- Apollon Oikonomopoulos <email address hidden> Thu, 18 Apr 2019 10:21:19 +0300
-
dovecot (1:2.3.4.1-3) unstable; urgency=high
* [07c9212] Fix two buffer overflows when reading oversized FTS headers
and/or oversized POP3-UIDL headers (CVE-2019-7524).
-- Apollon Oikonomopoulos <email address hidden> Mon, 25 Mar 2019 23:06:01 +0200
-
dovecot (1:2.3.4.1-2) unstable; urgency=medium
[ Laurent Bigonville ]
* [ac99918] Fix double-free crash in mysql driver
Fix double closing of the connection in the mysql driver, this should
fix the crash in the dovecot auth process, taken from upstream.
(Closes: #918339)
[ Apollon Oikonomopoulos ]
* [8a30446] Bump Standards-Version to 4.3.0; no changes needed
-- Apollon Oikonomopoulos <email address hidden> Thu, 14 Mar 2019 11:02:39 +0200
-
dovecot (1:2.3.4.1-1) unstable; urgency=high
* [bebf0b4] New upstream version 2.3.4.1
+ Fixes CVE-2019-3814: TLS client auth username handling
-- Apollon Oikonomopoulos <email address hidden> Tue, 05 Feb 2019 16:19:12 +0200
-
dovecot (1:2.3.4-2) unstable; urgency=medium
* [51d1317] Fix FTBFS on 32-bit platforms.
Cherry-pick upstream commit de42b54, fixing the event-stats test on
32-bit platforms.
-- Apollon Oikonomopoulos <email address hidden> Sat, 24 Nov 2018 02:02:17 +0200
-
dovecot (1:2.3.4-1) unstable; urgency=medium
* [14c247f] New upstream version 2.3.4
* [7fed004] Update pigeonhole to 0.5.4
-- Apollon Oikonomopoulos <email address hidden> Fri, 23 Nov 2018 22:00:06 +0200
-
dovecot (1:2.3.3-1) unstable; urgency=medium
[ Jelmer Vernooij ]
* Trim trailing whitespace.
[ Apollon Oikonomopoulos ]
* [6591a99] New upstream version 2.3.3
* [3d718ec] Bump Standards-Version to 4.2.1; no changes needed
* [123bd32] Update pigeonhole to 0.5.3
-- Apollon Oikonomopoulos <email address hidden> Thu, 04 Oct 2018 17:29:40 +0300
-
dovecot (1:2.3.2.1-1) unstable; urgency=medium
* [40ba9f0] New upstream bugfix release 2.3.2.1
* [87045ac] Drop fix-ftbfs-on-32bit.patch; merged upstream
* [5bb22a4] Bump Standards-Version to 4.1.5; no changes needed
-- Apollon Oikonomopoulos <email address hidden> Tue, 10 Jul 2018 17:51:43 +0300
-
dovecot (1:2.3.2-2) unstable; urgency=medium
* [48067de] Fix FTBFS on 32-bit platforms by cherry-picking upstream commit
1e23986f.
-- Apollon Oikonomopoulos <email address hidden> Wed, 04 Jul 2018 12:43:14 +0300
-
dovecot (1:2.3.2-1) unstable; urgency=medium
* [bb03669] New upstream version 2.3.2
+ Upload to unstable
* [d29da3a] Merge 2.3 package changes from experimental. Important changes:
+ [b3d1e17] Enable AppArmor support, see
https://wiki2.dovecot.org/Plugins/Apparmor
• B-D on libapparmor-dev
+ [c0c55bd] Enable Lua scripting support for authdb/passdb.
• B-D on liblua5.3-dev
• New binary package, dovecot-auth-lua
+ [4f6792e] Build with sodium support, enabling the ARGON2I and ARGON2ID
password schemes.
• B-D on libsodium-dev
+ [54347e7] Build with ICU support enabling FTS unicode normalization
• B-D on libicu-dev
+ New dovecot-submissiond binary package for the dovecot submission agent;
see https://wiki2.dovecot.org/Submission.
* [4db4813] Change maintainer address to <email address hidden>
* [5118354] Update pigeonhole to 0.5.2
* [52a7af4] Drop murmur3-big-endian.patch; merged upstream
* [22a6eee] Refresh dovecot_name.patch
* [3af7568] dovecot_name.patch: apply to submissiond as well
-- Apollon Oikonomopoulos <email address hidden> Wed, 04 Jul 2018 08:57:45 +0300
-
dovecot (1:2.2.36-1) unstable; urgency=medium
* [19f2274] d/gbp.conf: set merge-mode to "merge" to preserve pigeonhole/
when importing new dovecot sources
* [6b9bf0d] New upstream version 2.2.36
* [be12f22] Bump pigeonhole version to 0.4.24
+ Remove new file under doc/rfc
+ Ship the new imap_filter_sieve module in dovecot-sieve
* [b77be59] Bump Standards-Version to 4.1.4; no changes needed
-- Apollon Oikonomopoulos <email address hidden> Wed, 06 Jun 2018 09:31:49 +0300
-
dovecot (1:2.2.35-2) unstable; urgency=medium
* [7665652] Use git-subtree to generate pigeonhole patch from git; add
single-debian-patch to d/source/local-options
* [bfa0f10] d/rules: specify libdir manually; previous upload moved modules
under /usr/lib/<triplet>, which was bound to break existing setups
* [982e826] d/copyright: adjust pigeonhole path and bump years
-- Apollon Oikonomopoulos <email address hidden> Thu, 22 Mar 2018 16:56:40 +0200
-
dovecot (1:2.2.35-1) unstable; urgency=medium
* [8108cba] New upstream version 2.2.35
* [6cbbaa1] Update pigeonhole to 0.4.23 (Closes: #892137)
* [ef40625] d/rules: call configure via dh_auto_configure.
Thanks to Helmut Grohne (Closes: #885854)
* [a459455] Drop B-D on libcurl4-gnutls-dev; removed upstream since 2.2
* [235af9d] Update upstream signing key
-- Apollon Oikonomopoulos <email address hidden> Tue, 20 Mar 2018 11:15:42 +0200
-
dovecot (1:2.2.34-2) unstable; urgency=high
* [868dc65] Update pigeonhole to 0.4.22
* Set urgency to high due to the security fixes in 2.2.34-1
-- Apollon Oikonomopoulos <email address hidden> Fri, 02 Mar 2018 18:36:23 +0200
-
dovecot (1:2.2.34-1) unstable; urgency=medium
* [f53dc9a] New upstream version 2.2.34
Fixes the following security issues:
+ CVE-2017-15130: TLS SNI config lookups may lead to excessive memory
usage (Closes: #891820)
+ CVE-2017-14461: rfc822_parse_domain information leak vulnerability
(Closes: #891819)
+ CVE-2017-15132: auth client leaks memory if SASL authentication is
aborted (Closes: #888432)
* [0dc98c6] Do not patch all-settings.c; regenerate it at build time
instead. Thanks to Aki Tuomi!
* [e678e3b] Bump dh compat to 11
+ B-D on debhelper (>= 11~)
+ Use dh_installsystemd instead of dh_systemd_enable
* [271b290] Bump Standards-Version to 4.1.3; no changes needed
* [3cd6715] d/copyright: bump upstream and debian years
* [380d1ac] Drop the ENABLED flag from /etc/default/dovecot (but let the
initscript handle it if it exists)
* [97d6fae] d/watch: switch upstream URL to https://
-- Apollon Oikonomopoulos <email address hidden> Thu, 01 Mar 2018 10:55:49 +0200
-
dovecot (1:2.2.33.2-1) unstable; urgency=medium
* [8216f38] New upstream version 2.2.33.2
-- Apollon Oikonomopoulos <email address hidden> Sat, 11 Nov 2017 20:59:43 +0200
-
dovecot (1:2.2.33.1-1) unstable; urgency=medium
* [dbd1132] New upstream version 2.2.33.1
+ [b3d1f2d] Refresh split-protocols.patch
+ [e0de123] Update pigeonhole to 0.4.21
* [ef6a1eb] Set mail_privileged_group to 'mail' by default (Closes: #711856)
* [aeb6cf3] d/copyright: convert to Format 1.0
* [5961f9d] Use dh-autoreconf for both, dovecot and pigeonhole.
* [85f1f0f] Bump Standards to 4.1.1; no changes needed
-- Apollon Oikonomopoulos <email address hidden> Fri, 13 Oct 2017 16:28:14 +0300
-
dovecot (1:2.2.32-2) unstable; urgency=medium
* [fa71c69] dovecot-core.postinst: remove dovecot-common's postrm
(Closes: #696382)
* [e835c67] Ship decode2text.sh as an example (Closes: #767313)
* [63fb486] Deprecate dovecot-dbg in favor of auto dbgsyms
* [36b44b9] Handle unsupported SSLv2/SSLv3 in the ssl_protocols setting
gracefully (Closes: #866752)
-- Apollon Oikonomopoulos <email address hidden> Tue, 19 Sep 2017 16:59:38 +0300
-
dovecot (1:2.2.32-1) unstable; urgency=medium
* [6652d9c] New upstream version 2.2.32.
* [c9cb096] Update pigeonhole to 0.4.20.
* [b499950] dovecot-core: remove SSL key/cert symlinks on purge
(Closes: #867157)
* [dbdcc66] dovecot-core.postinst: ignore adduser errors (Closes: #867849)
* [476c950] Bump Standards to 4.1.0; no changes needed.
* [2914efa] Drop B-D on autotools-dev, it is depended on by debhelper 10.
* [305d022] Remove Fabio, Joel and Marco from Uploaders. Thanks for your work!
-- Apollon Oikonomopoulos <email address hidden> Tue, 12 Sep 2017 16:15:52 +0300
-
dovecot (1:2.2.31-1) unstable; urgency=medium
* [9b058f3] New upstream version 2.2.31
+ [2b577c1] Bump pigeonhole version to 0.4.19
* Enable TLS by default:
+ [7ca4b1c] Update SSL cert location patch; cert/key should reside under
/etc/dovecot/private by default.
+ [05d3d0f] Use ssl-cert-snakeoil certificates to setup SSL by default
(Closes: #376146, #786570)
+ [862901f] dovecot-core.postinst: manage 10-ssl.conf using ucf
(Closes: #850538)
+ [418df05] README.Debian: document the new TLS setup
+ [47bade9] dovecot-core.NEWS: document TLS support
* [8356bc0] Handle /etc/dovecot/private mode using dpkg-statoverride
* dovecot-core.postinst: cleanup
+ [afbd33f] dovecot-core.postinst: always call adduser
+ [ee22dc5] dovecot-core.postinst: remove obsolete conffile handling
+ [7bb298b] dovecot-core.postinst: do not remove the imapd user/group
* [815a2d1] README.Debian: cleanup
* [91115a3] Use noawait dpkg triggers (lintian warning)
* [e845cec] Add basic usage DEP-8 test, doing end-to-end tests involving
LDA, IMAP and POP3.
* [71c73ef] systemd: convert service to Type=simple and start after
network-online.target (Closes: #865546, #825562)
* [1534fac] dovecot.service: enable ProtectSystem=full
* [d276c69] B-D only on default-libmysqlclient-dev
-- Apollon Oikonomopoulos <email address hidden> Tue, 27 Jun 2017 18:18:12 +0300
-
dovecot (1:2.2.30.2-1) unstable; urgency=medium
* [401e83d] New upstream version 2.2.30.2
* [1ea8321] Bump pigeonhole version to 0.4.18
* [97bf8ec] Drop CVE-2017-2669 patch
* [9c1bbe2] Drop fix-sha3-on-big-endian.patch
* [d3c607b] Refresh dovecot_name.patch
* [5c64268] Bump Standards to 4.0.0; no changes needed
* [0b884fc] Bump compat to 10
+ B-D on debhelper (>= 10)
+ Drop B-D on dh-systemd, now provided by debhelper
+ Run dh --without=autoreconf, since we use autotools-dev
-- Apollon Oikonomopoulos <email address hidden> Thu, 22 Jun 2017 22:22:59 +0300
-
dovecot (1:2.2.27-3) unstable; urgency=high
* [117285a] Remove /etc/dovecot/README (Closes: #849290)
* [04e8ce3] auth: Do not double-expand key in passdb dict when
authenticating (CVE-2017-2669) (Closes: #860049)
-- Apollon Oikonomopoulos <email address hidden> Tue, 11 Apr 2017 00:46:54 +0300
-
dovecot (1:2.2.27-2) unstable; urgency=medium
* [30586e3] Fix SHA3 on big-endian architectures.
-- Apollon Oikonomopoulos <email address hidden> Thu, 15 Dec 2016 22:24:56 +0200
-
dovecot (1:2.2.27-1) unstable; urgency=medium
[ Jaldhar H. Vyas ]
* [b1e4693] Imported Upstream version 2.2.27
+ Includes fix for CVE-2016-8652 (Closes: #846605)
[ Apollon Oikonomopoulos ]
* [b25993a] Drop patches merged upstream:
+ call_openssl_cleanup_at_deinit.patch
+ disable_sslv23.patch
-- Apollon Oikonomopoulos <email address hidden> Wed, 14 Dec 2016 21:48:46 +0200
-
dovecot (1:2.2.26.0-4) unstable; urgency=medium
* [3015f35] Drop references to SSLv2 in the default SSL protocols (Closes: #844271)
-- Apollon Oikonomopoulos <email address hidden> Mon, 14 Nov 2016 17:55:26 +0200
-
dovecot (1:2.2.26.0-3) unstable; urgency=medium
* [b03027b] Call OPENSSL_cleanup() on dcrypt_openssl unload. Fixes FTBFS
with OpenSSL 1.1.0c.
-- Apollon Oikonomopoulos <email address hidden> Sun, 13 Nov 2016 10:56:30 +0200
-
dovecot (1:2.2.26.0-2) unstable; urgency=medium
* [9db7d1b] Fix upgrades from 2.2.25 (Closes: #843028)
-- Apollon Oikonomopoulos <email address hidden> Tue, 08 Nov 2016 15:06:16 +0200
-
dovecot (1:2.2.26.0-1) unstable; urgency=medium
[ Apollon Oikonomopoulos ]
* [18fc181] New upstream version 2.2.26.0 (Closes: #828286, #834837)
* [3ecfd3c] Update pigeonhole to 0.4.16
* [61ff825] Move libdovecot-ldap and libdict_ldap to dovecot-ldap (Closes:
#830135).
* [b3a1650] Ubuntu: disable -Bsymbolic-functions ld flag.
Thanks to Christian Ehrhardt <email address hidden>
(Closes: #842151) (LP: #1636781)
* [5828ab1] B-D on default-libmysqlclient-dev (but keep plain
libmysqlclient-dev as an alternative to ease backports).
* [0086110] Drop DRAC plugin.
Thanks to Christian Ehrhardt <email address hidden>
(Closes: #842153)
[ Jaldhar H. Vyas ]
* [60808eb] Move aclocal *.m4 files into -dev package.
* [52fd869] Move lib95_imap_sieve_plugin.so into dovecot-sieve (Closes:
#832046).
-- Apollon Oikonomopoulos <email address hidden> Thu, 07 Jul 2016 10:17:58 +0200
-
dovecot (1:2.2.25-1) unstable; urgency=medium
* [cc29a81] Imported Upstream version 2.2.25
* [d19bcca] Updated pigeonhole patch to 0.4.14
* [16db179] Merged in some features of the Ubuntu dovecot package.
+ dovecot-core: added lsb-base dependency.
+ dovecot-core: Added apport hook.
+ dovecot-imapd,dovecot-pop3d: Added ufw profiles.
Thanks to Christian Erhardt <email address hidden>
(Closes: #828864)
-- Jaldhar H. Vyas <email address hidden> Fri, 01 Jul 2016 17:07:03 -0400
-
dovecot (1:2.2.24-1) unstable; urgency=medium
* [26020b6] Imported Upstream version 2.2.24 (Closes: #818652)
-- Apollon Oikonomopoulos <email address hidden> Mon, 09 May 2016 10:42:08 +0300
-
dovecot (1:2.2.23-1) unstable; urgency=medium
[ Jaldhar H. Vyas ]
* Drop missing-expunges.patch, merged upstream
[ Apollon Oikonomopoulos ]
* [8a01915] Imported Upstream version 2.2.23
-- Apollon Oikonomopoulos <email address hidden> Tue, 12 Apr 2016 17:30:03 +0300
-
dovecot (1:2.2.22-1) unstable; urgency=medium
[ Jaldhar H. Vyas ]
* [2321581] Imported Upstream version 2.2.22
* [3fa8a62] Updated pigeonhole patch to 0.4.13
-- Jaldhar H. Vyas <email address hidden> Fri, 18 Mar 2016 19:18:34 -0400
-
dovecot (1:2.2.21-1) unstable; urgency=medium
[ Jaldhar H. Vyas ]
* [d9c0630] Imported Upstream version 2.2.21 (Closes: #809666, #708539,
#801346, 803223)
* [5360548] Updated pigeonhole patch to 0.4.12
* [5e6783f] Fixed typo in dovecot-core.README.Debian.
Thanks to Ingo Wichmann <email address hidden> (Closes: #809717)
* [d00d0c7] Create /var/lib/dovecot in the package. (Closes: #801752)
* [6510373] Upstream patch for sync problem which could cause expunged
messages to keep reappearing. (Closes: #684499)
* [040f7fa] dovecot-core: dovecot.socket not enabled on installation
(Closes: #814999)
* [fc29003] /etc/dovecot/10-ssl.conf no longer managed by ucf or modified by
postinst. Thanks to Santiago Vila <email address hidden> (Closes: #773237)
* [0d16e16] Fixed some lintian warnings.
* [801ba7e] Added Apollon to uploaders
[ Apollon Oikonomopoulos ]
* [99ef3d8] Build with lz4 support (Closes: #784321)
* [92f68aa] Fix nss userdb (Closes: #712764)
* [41b9bde] Disable dovecot.socket in existing installations.
* [49c5b97] d/rules: specify systemd unit dir manually (Closes: #720854)
* [a377ccb] Convert to dh sequencer
* [48af954] B-D on debhelper >= 9
* [591c315] Bump standards to 3.9.7; no changes needed
* [ceb629e] Use dh_installinit --name
* [ef8d8ac] d/rules: refactor file installation
* [a899bcc] dovecot-core: use dh_installman
* [6159e00] d/rules: build in parallel if requested
* [51014e6] d/control: use HTTPS Vcs-* URLs
* [b385cf5] dovecot-sieve: replace Conflicts with Breaks
* [b4a9e68] Add basic DEP-8 tests
* [7452649] Add DEP-8 tests for systemd support
* [e5101aa] Re-enable PIE and bindnow
* [5717808] Fix invoke-rc.d calls and never call init.d directly
* [3504241] Drop debconf remains
-- Jaldhar H. Vyas <email address hidden> Tue, 01 Mar 2016 19:31:42 -0500
-
dovecot (1:2.2.18-2) unstable; urgency=high
* [3f3bf71] Updated pigeonhole patch to 0.4.8 (Closes: #792669)
-- Jaldhar H. Vyas <email address hidden> Sun, 23 Aug 2015 23:16:28 -0400
-
dovecot (1:2.2.18-1) unstable; urgency=medium
* [cce20a5] Imported Upstream version 2.2.18. Closes: #786760
* [36d2ec1] Refresh patch dovecot_name.patch.
* [109e6f8] Drop patch cve-2015-3420.patch: applied upstream.
* [6c59f09] Depend on krb5-multidev rather than libkrb5-dev.
-- Jelmer Vernooij <email address hidden> Sun, 24 May 2015 15:01:19 +0000
-
dovecot (1:2.2.16-1) unstable; urgency=medium
* [e9d9193] Imported Upstream version 2.2.16
* [976c256] Remove gbp- prefix from section names in debian/gbp.conf.
* [762b9a6] Add Dutch translation. Thanks, Frans Spiesschaert. Closes: #766203
* [dea3dd6] Drop bye_logout_not_sent.patch: already included upstream.
-- Jelmer Vernooij <email address hidden> Mon, 04 May 2015 12:23:05 +0000
-
dovecot (1:2.2.13-12) unstable; urgency=high
* [48f6fe4] Add patch cve-2015-3420.patch: Fix SSL/TLS handshake failures
leading to a crash of the login process with newer versions of OpenSSL.
Closes: #783649 (CVE-2015-3420)
-- Jelmer Vernooij <email address hidden> Mon, 04 May 2015 11:38:30 +0000
-
dovecot (1:2.2.13-11) unstable; urgency=high
* [ebc0377] Don't allow install of dovecot-sieve without a new enough
dovecot-core. (Closes: #772885)
-- Jaldhar H. Vyas <email address hidden> Sun, 14 Dec 2014 12:27:50 -0500
-
dovecot (1:2.2.13-10) unstable; urgency=high
[ Jelmer Vernooij ]
* [93db7f0] Fix path to 90-sieve-extprograms.conf in dovecot-sieve.postinst.
Closes: #772703, #772711
[ Jaldhar H. Vyas ]
* [8c627a4] Add another db_stop this time for triggers. Die #770695 die!
-- Jaldhar H. Vyas <email address hidden> Wed, 10 Dec 2014 19:56:20 -0500
-
dovecot (1:2.2.13-9) unstable; urgency=high
* [5b689f6] Made some overlooked configuration files into conffiles;
deleted excess files from /usr/share/doc/dovecot-core.
* [83f2fc4] Explicitly stop debconf in dovecot-core postinst which hopefully
fixes the last of the install hangs.
Thanks to Chris Gilbert <email address hidden> (Closes: #770695)
-- Jaldhar H. Vyas <email address hidden> Tue, 09 Dec 2014 06:17:23 -0500
-
dovecot (1:2.2.13-8) unstable; urgency=medium
* [b2f652f] Turn off SSL by default and leave SSL cert locations commented
out. Hopefully this will be a satisfactory lowest common denominator for
new installs without messing with upgrades.
(Closes: #771334, #771407)
-- Jaldhar H. Vyas <email address hidden> Tue, 02 Dec 2014 00:21:30 -0500
-
dovecot (1:2.2.13-7) unstable; urgency=high
* [daea09a] Commented out cert locations so install doesn't bomb if the
certs haven't been created yet.
(Closes: #706216, #732263, #767154, #768253, #769461, #770697)
-- Jaldhar H. Vyas <email address hidden> Fri, 28 Nov 2014 00:27:03 -0500
-
dovecot (1:2.2.13-6) unstable; urgency=medium
* [f7205c0] dovecot-dev: removed dependency on dovecot-core
* [e393868] Removed SSL certificate generation from postinst. From now on
you have to do this yourself. See dovecot-core's README.debian for
instructions. (Closes: #730828)
-- Jaldhar H. Vyas <email address hidden> Sat, 25 Oct 2014 23:31:42 -0400
-
dovecot (1:2.2.13-5) unstable; urgency=medium
* Fix name of organizationName field in SSL configuration for self-
signed certs. Closes: #760653
-- Jelmer Vernooij <email address hidden> Sat, 06 Sep 2014 23:19:51 +0200
-
dovecot (1:2.2.13-4) unstable; urgency=medium
* Add Provides with dovecot ABI version, for plugins to depend on. Closes: #456021
-- Jelmer Vernooij <email address hidden> Sun, 20 Jul 2014 19:31:09 +0200
-
dovecot (1:2.2.13-3) unstable; urgency=medium
* Build-depend on clucene 2.3 or later, which upstream lists as the
minimum version. Closes: #754141
* Use configuration file for openssl certificate configuration.
* Use canonical address for Vcs-Browser header.
* Remove unnecessary asterisk from NEWS entry; fixes lintian warning.
* Remove unused lintian override for usr/lib/dovecot/imap.
* dovecot-core: Ignore lintian warnings for empty directories.
-- Jelmer Vernooij <email address hidden> Tue, 08 Jul 2014 01:48:08 +0200
-
dovecot (1:2.2.13-2) unstable; urgency=medium
* [bd5e34b] Patches from upstreams' hg repo to fix BYE and LOGOUT not being
sent. (Closes: #751682)
* [452e336] Czech translation for debconf.
Thanks to Michal Šimůnek (Closes: #751389)
-- Jaldhar H. Vyas <email address hidden> Wed, 25 Jun 2014 01:38:59 -0400
-
dovecot (1:2.2.13-1) unstable; urgency=medium
* [0680040] Imported Upstream version 2.2.13
-- Jelmer Vernooij <email address hidden> Sun, 25 May 2014 18:45:38 +0200
-
dovecot (1:2.2.13~rc1-1) unstable; urgency=medium
* [7751508] Imported Upstream version 2.2.13~rc1
+ Fixes denial of service vulnerability (CVE-2014-3430). Closes: #747549
-- Jelmer Vernooij <email address hidden> Sat, 10 May 2014 14:34:14 +0200
-
dovecot (1:2.2.12-3) unstable; urgency=medium
* [0383db0] Break long line.
* [c961b6a] Fix installation of sieve plugins. Closes: #742770, #684271
* [388d2bf] Strip body.rfc5173.txt from the pigeonhole patch, as it is non-free. Closes: #745398
-- Jelmer Vernooij <email address hidden> Wed, 23 Apr 2014 02:56:56 +0200
-
dovecot (1:2.2.12-2) unstable; urgency=medium
* [c882a38] Add build dependencies libstemmer-dev and libexttextcat-dev, used by dovecot-lucene.
* [67762d4] Use autotools-dev to update config.guess and config.sub.
* [33e79b7] Update Japenese po file. Thanks, victory. Closes: #730171
* [cbf213b] Add non-standard-dir-perm override for /etc/dovecot/private.
-- Jelmer Vernooij <email address hidden> Sun, 23 Mar 2014 17:57:04 +0000
-
dovecot (1:2.2.10-1) unstable; urgency=low
* [0496c52] Imported Upstream version 2.2.10
* [515dd61] Added new package for Lucene full text search support.
Thanks to Jelmer Vernooij <email address hidden> for the patch.
(Closes: #685979)
* [718a68e] Fix old private key location in README.Debian.
Thanks to Jelmer Vernooij <email address hidden> for the patch.
(Closes: #702385)
* [42da568] dovecot-solr: Make sure solr-schema.xml gets installed.
(In /usr/share/dovecot)
(Closes: #695185)
* [77acbf7] Added /usr/share/dovecot/dovecot-abi file in dovecot-dev to
document -- you guessed it! -- the dovecot ABI version.
* [feb597a] Added support for xz compression.
-- Jaldhar H. Vyas <email address hidden> Thu, 06 Mar 2014 02:51:34 -0500
-
dovecot (1:2.2.9-1) unstable; urgency=low
[ Jaldhar H. Vyas ]
* [77468cf] Imported Upstream version 2.2.9
* [43e08f3] Place dovenull user in its own group. (Closes: #725164)
* [e1a3e9c] Handled the fact that dovecot-db.conf.ext is no longer used.
(Closes: #728107, #730403)
[Debconf translation updates]
* Russian (Yuri Kozlov). (Closes: #729106)
* German (Chris Leick). (Closes: #729358)
* Danish (Joe Hansen). (Closes: #729425)
* French (Julien Patriarca). (Closes: #729966)
* Portuguese (Américo Monteiro). (Closes: #730006)
* Polish (Michał Kułach). (Closes: #730061)
* Italian (Beatrice Torracca). (Closes: #730136)
* Japanese (victory). (Closes: #73017)
* Swedish (Martin Bagge / brother). (Closes: #730188)
* Spanish; (Camaleón). (Closes: #730354)
-- Jaldhar H. Vyas <email address hidden> Thu, 28 Nov 2013 00:40:37 -0500
-
dovecot (1:2.1.17-2) unstable; urgency=low
* [e8286e0] New version of drac patch taken from Ubuntu which works better
with 2.x (Closes: #716764)
* [23acb40] Add a patch from Ubuntu to report the distro name in the login
banner why not.
* [f8d566e] Don't need dovecot-common package anymore; get rid of it.
-- Jaldhar H. Vyas <email address hidden> Sat, 07 Sep 2013 14:58:05 -0400
-
dovecot (1:2.1.7-7) unstable; urgency=high
* If you are upgrading from stable or earlier versions of this package
from testing/unstable please carefully read
/usr/share/doc/dovecot-core/README.Debian.gz for important information
about changes.
* [0d74b31] Move Breaks/Replaces mailavenger from dovecot-common to
dovecot-core (Closes: #694376)
* [a8030a1] Revamped dovecot-cores README.Debian by adding any info I could
think of in order to ease upgrade problems. (Closes: #696820)
* [04798d3] Don't touch 10-ssl.conf at all. Eventually I will DTRT with
regards to the default generated ssl certificates but in the mean time
this will do the least mischief. (Closes: #696817)
* [fde17d1] Patch to make /etc/dovecot/readme point to the right place for
the example configuration. (Closes: #698941)
-- Jaldhar H. Vyas <email address hidden> Mon, 04 Feb 2013 16:27:17 -0500
-
dovecot (1:2.1.7-6) unstable; urgency=high
* WARNING: in order to get this package into wheezy some functionality
from the previous release had to be removed. Namely:
- TCP Wrappers support
- Hurd compatability support
- Triggers
All this will be coming back in the next version but for now, if you need
any of it, stick with -5.
* [1f869e0] NEWS.Debian was not getting added to the package (Closes: #693621)
* [564c5e2] Add breaks and replaces mailavenger for debian-common
(Closes: #694376)
-- Jaldhar H. Vyas <email address hidden> Fri, 14 Dec 2012 17:01:33 -0500
-
dovecot (1:2.1.7-5) unstable; urgency=high
* [132bc3b] Remove call to ntp-wait in init script. Dovecot handles a
skewed clock much better now. (Closes: #693225)
-- Jaldhar H. Vyas <email address hidden> Wed, 14 Nov 2012 14:45:29 -0500
-
dovecot (1:2.1.7-4) unstable; urgency=low
* [68ef7ad] piuparts complained /etc/dovecot/private was left unowned on
purge which is against policy (Closes: #692944)
-- Jaldhar H. Vyas <email address hidden> Sun, 11 Nov 2012 23:45:07 -0500
-
dovecot (1:2.1.7-3) unstable; urgency=high
[ Jaldhar H. Vyas ]
* [03d5499] Do not generate new dovecot cert if key or cert is already
present (Closes: #685896,#631257) Thanks to Alexander Ufimtsev
<email address hidden> and Jörg-Volker Peetz <email address hidden> for patches.
* [5be6c2a] You should be able to upgrade and remove dovecot-managesieved
without errors (Closes: #665487)
* [1a9ad5c] Fixes instances where UTF-8 was misused instead of mUTF-7
(Closes: #680035)
* [c0ac3ba] Backport of fix for failure to autocreate mailboxes
(Closes: #623440) This also requires setting the default mail_location.
* [ba1d3f5] Fix FTBS on Hurd (Closes: #686931) via upstream patch backported
from mercurial.
* [cfa92b5] Upgrade pigeonhole page to 0.3.1 (Closes: #688407)
* [58f01c2] Generated certificates will now be created in /etc/dovecot
(Closes: #608719)
* [8e40ea5] Patch to build with PIE and bindnow
by <email address hidden> (Closes: #679017)
* [87d982b] Use libwrap (Closes: #685850)
* [ebb5421] Start after nslcd (Closes: #692632)
* [2db5c1a] Add support for dpkg triggers. This means dovecot will not be
repeatedly restarted when installing or removing lots of plugins
(Closes: #601744)
* [bc66629] Patch to document -k in dsync.1
by Luca Capello <email address hidden> (Closes: #680992)
* [ba67766] Add lintian overrides.
[ Marco Nenciarini ]
* [ffba408] Updated watch file
* [9777434] Install missing default configuration files from upstream
* [9496828] Backport fix for segfault in managesieve triggered by
CHECKSCRIPT command. (Closes: #688197)
-- Jaldhar H. Vyas <email address hidden> Sat, 10 Nov 2012 03:50:30 -0500
-
dovecot (1:2.1.7-2) unstable; urgency=low
* [e23a136] Just a quick upload to make dovecot buildable on non-linux
platforms again. (Closes: #676817) I did it by removing the systemd
build-dep altogether. sd-daemon.[ch] is included in the source so if
systemd is installed on a system, it should be detected and socket
activation should happen. That is, assuming I've got everything right
(and documented) which is something I'll be looking into for the next
version.
-- Jaldhar H. Vyas <email address hidden> Thu, 21 Jun 2012 23:54:47 -0400
-
dovecot (1:2.1.7-1) unstable; urgency=low
* [7668742] Imported upstream 2.1.7 (Closes: #663243)
+ doveadm.1 documents the move command. (Closes: #641750)
* [4db927a] Patch to enable systemd support. (Closes: #672266)
Thanks Riku Voipio.
* [e17ac86] Previous attempt at setting hardening flags did not include the
drac plugin. Simon Ruderich provided an extra patch.
(Closes: #653530)
-- Jaldhar H. Vyas <email address hidden> Wed, 30 May 2012 16:27:21 -0400
-
dovecot (1:2.0.18-1) unstable; urgency=low
* [85ae320] Imported Upstream version 2.0.18
* [9cfd1da] Upped standards version to 3.9.3
* [afb4164] Patch to dovecot-core/postinst so that permissions of symlinked
certificates aren't modified. (Closes: #646508)
Thanks Michael Kuhn.
* [bf642ee] Patch to enable hardened build flags. (Closes: #653530)
Thanks Moritz Muehlenhoff.
* [00b0d0c] Updated pigeonhole to 0.2.6
-- Jaldhar H. Vyas <email address hidden> Fri, 09 Mar 2012 00:55:13 -0500
-
dovecot (1:2.0.15-1) unstable; urgency=low
* [a22575a] New upstream version 2.0.15: (Closes: #642045)
+ doveadm altmove: Added -r parameter to move mails back to primary
storage.
- v2.0.14: Index reading could have eaten a lot of memory in some
situations
- doveadm index no longer affects future caching decisions
- mbox: Fixed crash during mail delivery when mailbox didn't yet have
GUID assigned to it.
- zlib+mbox: Fetching last message from compressed mailboxes crashed.
- lib-sql: Fixed load balancing and error
* [8ce5abc] Update pigeonhole to release 0.2.4
* [87658d2] Add dovecot-solr to dovecot-core's Suggests line.
-- Marco Nenciarini <email address hidden> Mon, 19 Sep 2011 19:26:48 +0200
-
dovecot (1:2.0.14-3) unstable; urgency=low
* [f37a9ec] Enable solr full text search plugin. (LP: #620959)
* [cdd8b84] Build dovecot-common as architecture-all package.
* [af90444] Fix mail_plugin_dir default value in conf.d/10-mail.conf
(Closes: #624294)
* [61347cb] Bump debhelper build-depends to (>= 7.2.3~) because we use
dh_bugfiles.
* [4b757b6] Fix wrong configuration files path in sieve manpages.
-- Marco Nenciarini <email address hidden> Fri, 16 Sep 2011 02:26:21 +0200
-
dovecot (1:2.0.14-1) unstable; urgency=low
* [50a947e] New upstream version 2.0.14: (Closes: #640143)
+ doveadm: Added support for running mail commands by proxying to
another doveadm server.
+ Added "doveadm proxy list" and "doveadm proxy kick" commands to
list/kick proxy connections (via a new "ipc" service).
+ Added "doveadm director move" to assign user from one server to
another, killing any existing connections.
+ Added "doveadm director ring status" command.
+ userdb extra fields can now return name+=value to append to an
existing name, e.g. "mail_plugins+= quota".
- script-login attempted an unnecessary config lookup, which usually
failed with "Permission denied".
- lmtp: Fixed parsing quoted strings with spaces as local-part for
MAIL FROM and RCPT TO.
- imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not
returned all data sometimes.
- ldap: Fixed random assert-crashing with with sasl_bind=yes.
- Fixes to handling mail chroots
- Fixed renaming mailboxes under different parent with FS layout when
using separate ALT, INDEX or CONTROL paths.
- zlib: Fixed reading concatenated .gz files.
* [0297425] Use xz compression for dbg packages.
* [4464ccf] Support parallel builds in debian/rules
* [19667f0] Acknowledge NMU 1:2.0.13-1.1.
Thanks to Luk Claes
-- Marco Nenciarini <email address hidden> Tue, 06 Sep 2011 23:18:46 +0200
-
dovecot (1:2.0.13-1.1) unstable; urgency=low
* Non-maintainer upload. * Don't ship .la files (Closes: #621297). -- Luk Claes <email address hidden> Sat, 18 Jun 2011 12:31:28 +0200
-
dovecot (1:2.0.13-1) unstable; urgency=high
[ Marco Nenciarini ] * [8af9e4d] New upstream version 2.0.13: + Added "doveadm index" command to add unindexed messages into index/cache. If full text search is enabled, it also adds unindexed messages to the fts database. + added "doveadm director dump" command. + pop3: Added support for showing messages in "POP3 order", which can be different from IMAP message order. This can be useful for migrations from other servers. Implemented it for Maildir as 'O' field in dovecot-uidlist. - doveconf: Fixed a wrong "subsection has ssl=yes" warning. - mdbox purge: Fixed wrong warning about corrupted extrefs. - sdbox: INBOX GUID changed when INBOX was autocreated, leading to trouble with dsync. - script-login binary wasn't actually dropping privileges to the user/group/chroot specified by its service settings. - Fixed potential crashes and other problems when parsing header names that contained NUL characters. (CVE-2011-1929) (Closes: #627443) -- Marco Nenciarini <email address hidden> Sat, 21 May 2011 23:58:06 +0200
-
dovecot (1:2.0.12-1) unstable; urgency=low
[ Jaldhar H. Vyas ] * [66cbb94] New upstream major release. Imported Upstream version 2.0.12 * [a48c7fd] Updated standards version [ Marco Nenciarini ] * [5c6b334] Updated watch file * [0ba683e] Updated init script to new configuration scheme. (Closes: #593527) * [8370be4] Fix upgrading from rename-it.nl packages * [ae804e3] Update changelog -- Jaldhar H. Vyas <email address hidden> Mon, 25 Apr 2011 17:03:26 -0400
-
dovecot (1:1.2.15-4) unstable; urgency=low
* [49abe86] Fix upgrade from lenny by adding epoch to Replaces and Breaks lines (Closes: #601980) -- Marco Nenciarini <email address hidden> Mon, 24 Jan 2011 23:12:17 +0100
-
dovecot (1:1.2.15-3) unstable; urgency=low
* [096c373] Fix file overwrite error when upgrading from lenny
(Closes: #601980)
* [37b3220] Add --no-create-home to adduser invocation in dovecot-
common.postinst script (Closes: #601767)
* [b00b527] Fall back to `hostname` if `hostname -f` invocation fails
(Closes: #562780)
* [9102fec] Make self-generated certificates key length 2048 bits.
-- Marco Nenciarini <email address hidden> Tue, 02 Nov 2010 11:12:53 +0100
-
dovecot (1:1.2.15-2) unstable; urgency=low
* [a0744a5] Switch vcs fields to git
* [d8a1bd4] Add debian/gbp.conf to make easy the usage of git-
buildpackage
* [c0dc21f] Warn that the generated SSL certificate will expire in 10
years instead of 365 days, as it's the lifetime of of self-generated
certificates since 1:1.2.13-1
* [6472d63] Switch to gbp-pq patch management.
* [bf2fc17] Upgraded sieve plugin to version 0.1.18
* [6b9809d] Upgraded managesieve plugin to version 0.11.12
* [d67cd17] Upgraded dovecot-managesieve.patch to version 0.11.12
-- Marco Nenciarini <email address hidden> Thu, 28 Oct 2010 22:50:19 +0200
-
dovecot (1:1.2.15-1) unstable; urgency=high
[ Marco Nenciarini ]
* New upstream release (Closes: #587036,#597529)
* Updated policy version to 3.9.1.0 (no changes needed)
[ Jaldhar H. Vyas ]
* [SECURITY] Fixes two bugs with acls which could have allowed a user to
gain improper access or admin rights to shared mailboxes.
(Closes: #599521)
* Warn that the generated SSL certificate will expire in 365 days. Thanks
Phillip Weis. (Closes: #576455)
* Wherever the path to sendmail is given as /usr/lib/sendmail, change to
/usr/sbin/sendmail. (Closes: #570814,#595671)
-- Jaldhar H. Vyas <email address hidden> Fri, 08 Oct 2010 17:34:19 -0400
-
dovecot (1:1.2.13-1) unstable; urgency=low
[ Jaldhar H. Vyas ]
* dovecot-common: Upped expiration date of self-generated certificates to
10 years from 1 year. (Closes: #587371)
[ Marco Nenciarini ]
* New upstream release:
- Fixed iconv() crash when it was processing several kilobytes of
broken continuous input. This mainly could have caused a problem
with IMAP SEARCH. Possibly also with some Sieve checks.
- If MIME encoded-words contained line feeds, Dovecot logged
cache corruption errors.
- mbox: Renaming mailbox under newly created dir didn't move index
directory.
- mbox: When generating envelope to From_-line, don't append a second
@owndomain if username already has one.
* Updated policy version to 3.9.0.0 (no changes needed)
-- Marco Nenciarini <email address hidden> Mon, 26 Jul 2010 17:03:38 +0200
-
dovecot (1:1.2.12-1) unstable; urgency=low
* New upstream release
* Upgraded sieve plugin to version 0.1.17
* Refreshed dovecot-managesieve.patch
* debian/patches/sieve-fix-imapflags.patch: Removed. Fixed upstream.
-- Marco Nenciarini <email address hidden> Sat, 26 Jun 2010 18:14:15 +0200
-
dovecot (1:1.2.11-1) unstable; urgency=high
* New upstream release
* urgency set to high, because under particular circumstances you could
cause a DoS by sending a message with a huge header.
* sieve: Fix addflags command in deprecated imapflags extension
(Closes: #570058)
* Include a daily expire script with a setting in /etc/default/dovecot
to enable it. The new script is disabled by default as it requires
some configurations by the system administrator. Thanks to Hans Spaans
* Mark expire-tool.sh as a bash script
* Bump Standards-Version to 3.8.4, no changes needed
-- Marco Nenciarini <email address hidden> Mon, 08 Mar 2010 22:25:46 +0100
-
dovecot (1:1.2.10-1) unstable; urgency=low
* New upstream release (Closes: #566796)
* Upgraded sieve plugin to version 0.1.15
* Upgraded managesieve plugin to version 0.11.11
* Upgraded dovecot-managesieve.patch to version 0.11.11
-- Marco Nenciarini <email address hidden> Mon, 25 Jan 2010 17:21:09 +0100
-
dovecot (1:1.2.9-2) unstable; urgency=low
* Upgraded sieve plugin to version 0.1.14
* Upgraded managesieve plugin to version 0.11.10
* Upgraded dovecot-managesieve.patch to version 0.11.10
* debian/patches/dovecot-example.patch: Refreshed.
* Added expire-tool wrapper script (Closes: #565538)
* Added ${misc:Depends} to the dependencies of each binary package,
to make lintian happy (debhelper-but-no-misc-depends)
-- Marco Nenciarini <email address hidden> Sun, 17 Jan 2010 09:39:42 +0100
-
dovecot (1:1.2.9-1) unstable; urgency=low
* New upstream release.
* debian/patches/gold-fix.patch: Removed. Fixed upstream.
-- Marco Nenciarini <email address hidden> Thu, 17 Dec 2009 10:52:53 +0100
-
dovecot (1:1.2.7-1) unstable; urgency=low
* New upstream release.
* debian/dovecot-common.init:
- use $CONF when starting the daemon. (Closes: #549944)
- always output start/stop messages. (Closes: #523810)
-- Fabio Tranchitella <email address hidden> Sat, 14 Nov 2009 11:28:33 +0100
-
dovecot (1:1.2.6-1) unstable; urgency=low
* New upstream relese.
* debian/patches/v1.2.5-exec-mail_fix.dpatch: removed, merged upstream.
-- Fabio Tranchitella <email address hidden> Mon, 12 Oct 2009 06:56:55 +0000
-
dovecot (1:1.2.5-2) unstable; urgency=low
* debian/dpatches/v1.2.5-exec-mail_fix.dpatch: added.
(Closes: #546694, #546695)
* debian/dovecot-common.dirs: removed /etc, /etc/ssl/{private,certs}, they
are handled by openssl; this should fix the piuparts test.
-- Fabio Tranchitella <email address hidden> Sun, 27 Sep 2009 20:53:52 +0200
-
dovecot (1:1.2.5-1) unstable; urgency=low
* New upstream release.
-- Fabio Tranchitella <email address hidden> Mon, 14 Sep 2009 14:34:06 +0200
-
dovecot (1:1.2.4-2) unstable; urgency=low
* debian/patches/dovecot-libsieve.dpatch: updated to 0.1.12.
(Closes: #539527)
-- Fabio Tranchitella <email address hidden> Wed, 02 Sep 2009 07:28:23 +0200
-
dovecot (1:1.2.2-2) unstable; urgency=high
* Er that should be fcntl not fnctl. (Closes: #539474, #539486)
* For the sake of completeness, fixed some errors in the example config file.
(They are in the !include statements which are commented out by default
so it is unlikely that most users will actually be affected.)
(Closes: #539391)
-- Jaldhar H. Vyas <email address hidden> Sat, 01 Aug 2009 11:38:03 -0400
-
dovecot (1:1.2.2-1) unstable; urgency=low
[Joel Johnson]
* New upstream version, updated ManageSieve patch
- fixes index corruption condition (Closes: #537388)
* Set default for mbox_write_locks to "fnctl dotlock" according to
Debian Policy (Closes: #537326)
* Set MySQL build dependency to use version-agnostic -dev package
* Drop postgres-configure patch, functionality included upstream
* Updated dovecot-libsieve to version 0.1.9
- fixes subaddress matching (Closes: #537386)
- check additional address-list headers (Closes: #537379)
[Jaldhar H. Vyas]
* Remove unneeded build-dependencies on byacc and flex now that we no longer
use cmusieve.
-- Joel Johnson <email address hidden> Tue, 28 Jul 2009 20:35:57 -0600
-
dovecot (1:1.2.1-2) unstable; urgency=low
* Update to use default automake (Closes: #536880) now that current upstream
successfully builds with 1.10 (was previously a problem in bug 473754.
* Updated Standards-Verson to 3.8.2 (no action required)
* Remove ./var/run directories to fix lintian warnings.
* Updated dovecot-libsieve patch to version 0.1.8, removed autogen.sh,
tests, and doc/rfc
* Updated dovecot-managesieve patch to version 0.11.7
* Updated dovecot-managesieve-dist patch to Mercurial revision 12b9733ee8b0
(0.11.7+), removed lib-cmusieve, doc/rfs, autogen.sh
* Add additional upgrading note to README.Debian to clarify the ManageSieve
configuration changes needed - existing configurations break if not
updated! (Closes: #537158)
* Include the ChangeLog and README for sieve and ManageSieve
-- Joel Johnson <email address hidden> Wed, 15 Jul 2009 20:29:33 -0600
-
dovecot (1:1.2.1-1) unstable; urgency=low
[ Joel Johnson ]
* New upstream release
* Update packaging for 1.2 release
- update SIEVE patch to use Dovecot rewrite (version 0.1.7,
removed RFCs and tests for a DFSG patch)
- update ManageSieve patch and software to hg revision 2c9b4b4ab6a8
(0.11.6+) for 1.2.1 support
+ removed removing lib-cmusieve since building against newer sieve
+ removed doc/rfc for DFSG compliance
+ removed autogen.sh since we run autotools during the build
- updated other misc patches
-- Joel Johnson <email address hidden> Sun, 12 Jul 2009 11:15:01 -0600
-
dovecot (1:1.1.13-2) unstable; urgency=high
* New upload, urgency set to high: the package in testing is broken.
* debian/dovecot-common.init: fixed a typo.
* debian/patches/dovecot-example.dpatch: fixed a few paths.
(Closes: #521544)
-- Fabio Tranchitella <email address hidden> Sun, 29 Mar 2009 21:16:02 +0200
-
dovecot (1:1.1.13-1) unstable; urgency=low
* New upstream release.
* This version fixes problems accessing mailboxes in some setups.
(Closes: #520310)
-- Fabio Tranchitella <email address hidden> Thu, 19 Mar 2009 17:31:56 +0100
-
dovecot (1:1.1.12-1) unstable; urgency=low
* New upstream release, it fixes some wrong defaults in the configuration
file. (Closes: #518631)
* debian/rules: add support for libdb. (Closes: #518630)
* debian/dovecot-common.postinst: create the dovecot certificate only at
install time. (Closes: #518738, #518598)
-- Fabio Tranchitella <email address hidden> Mon, 16 Mar 2009 14:26:32 +0100
-
dovecot (1:1.1.11-4) unstable; urgency=low
* debian/dovecot-common.init: fixed a typo from the last upload.
(Closes: #518504)
-- Fabio Tranchitella <email address hidden> Fri, 06 Mar 2009 18:39:09 +0100
-
dovecot (1:1.1.11-3) unstable; urgency=low
* debian/dovecot-common.init: applied patch from Håkon Stordahl to call
ntp-wait if available. (Closes: #517808)
-- Fabio Tranchitella <email address hidden> Wed, 04 Mar 2009 17:38:59 +0100
-
dovecot (1:1.1.11-2) unstable; urgency=low
* debian/dovecot-common.init: fixed a bug in the init script, adding a
missing slash in the PIDFILE path. (Closes: #516845)
* debian/dovecot-common.init: fixed a bug in the init script, sending the HUP
signal for reloading the configuration. (Closes: #512197)
* debian/dovecot-common.init: check if /etc/inetd.conf exists.
(Closes: #509259, #497148)
* debian/control: dovecot-common suggests ntp and ntpdate. (Closes: #511060)
* debian/dovecot-common.postinst: migration hook for default_mail_env =>
mail_location. (Closes: #517073)
* debian/dovecot.1: fixed the path of the configuration file.
(Closes: #501493)
-- Fabio Tranchitella <email address hidden> Fri, 27 Feb 2009 17:24:09 +0100
-
dovecot (1:1.1.11-1) unstable; urgency=low
* New upstream release, upload to unstable. (Closes: #507122)
* debian/patches/dovecot-quota.dpatch: fixed a bug in the imap quota plugin.
(Closes: #484677)
* debian/dovecot-common.init: added the status action, thanks Fladischer
Michael for the patch. (Closes: #509694)
* debian/dovecotpw.1: added manpage for dovecotpw, thanks Xavier Luthi for
the patch. (Closes: #504712)
-- Fabio Tranchitella <email address hidden> Fri, 20 Feb 2009 20:39:38 +0100
-
dovecot (1:1.0.15-2.3) unstable; urgency=medium
* Non-maintainer upload
* Urgency medium due to RC bug fix
* Fix ManageSieve security hole "virtual users can edit scripts of other
virtual users" described at
<http://dovecot.org/list/dovecot/2008-November/035259.html>
(closes: #506031)
-- Dominic Hargreaves <email address hidden> Wed, 19 Nov 2008 18:11:36 +0000
-
dovecot (1:1.0.15-2.2) unstable; urgency=medium
* Non-maintainer upload
* Urgency medium due to RC bug fix
* Switch from byacc to bison to fix FTBFS (closes: #498679)
* Pull fix for CVE-2008-4577 from upstream VCS (partially fixes #502967)
-- Dominic Hargreaves <email address hidden> Sat, 25 Oct 2008 19:32:34 +0100
