SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for cyrus-imapd-utils-3.4.2-lp156.6.1.x86_64.rpm :

* Mon Sep 20 2021 Matthias Fehring - use older python3-Sphinx for TW builds in order to cope with upstream Sphinx >=3 issues
* Wed Sep 01 2021 Matthias Fehring - update to version 3.4.2 + Security fixes
* Fixed: Certain user inputs are used as hash table keys during processing. A poorly chosen string hashing algorithm meant that the user could control which bucket their data was stored in, allowing a malicious user to direct many inputs to a single bucket. Each subsequent insertion to the same bucket requires a strcmp of every other entry in it. At tens of thousands of entries, each new insertion could keep the CPU busy in a strcmp loop for minutes. The string hashing algorithm has been replaced with a better one, and now also uses a random seed per hash table, so malicious inputs cannot be precomputed. (CVE-2021-33582) + Build changes
* Fixed: build problems when --without-sieve configured (gh#cyrusimap/cyrus-imapd#3527) + Bug fixes
* Fixed: missing CY namespace in some DAV responses
* Fixed: don\'t allow JMAP uploads if the user does not have r/w access to any mailbox/calendar/addressbook
* Fixed: Email/query sometimes chose the wrong search algorithm
* Fixed: LMTP delivery to shared mailboxes was broken (gh#cyrusimap/cyrus-imapd#3488)
* Fixed: \'lookup\' ACL alone was not allowing IMAP LIST (gh#cyrusimap/cyrus-imapd#3528)
* Fixed: RTF message bodies were treated as plain text in search snippets
* Mon May 10 2021 Matthias Fehring - use version tag in spec file instead of obsolete _tarver definition
* Mon May 10 2021 Matthias Fehring - update to version 3.4.1
* Fixed: Remote authenticated users could bypass intended access restrictions on certain server annotations. Additionally, a long-standing bug in replication did not allow server annotations to be replicated. Combining these two bugs, a remote authenticated user could stall replication, requiring administrator intervention. (CVE-2021-32056)
* Fixed: using GLIBC-only macro to check for GCC features (gh#cyrusimap/cyrus-imapd#3462)
* Fixed: per-server annotations were unable to replicate (gh#cyrusimap/cyrus-imapd#3456)
* Fixed: ctl_cyrusdb -r assertion on startup when mboxlist_db configured to \"skiplist\" (gh#cyrusimap/cyrus-imapd#3468)
* Fixed: JMAP email updates must result in non-empty mailboxIds
* Fixed: output JMAP dates as Dates, not UTCDates
* Fixed: JMAP Calendars Extension - gracefully handle empty property values
* Fixed: JMAP Calendars Extension - ignore empty string default values in events
* Fixed: JMAP Calendars Extension - do not use Participant.email for scheduling
* Wed Apr 21 2021 Matthias Fehring - fix missing replacement for placeholders in systemd service files
* Tue Apr 20 2021 Matthias Fehring - add cyrus-imapd-3.4.0-remove-rpath.patch to remove RPATH from perl module Cyrus::SIEVE::managesieve (managesieve.so)
* Tue Apr 20 2021 Matthias Fehring - update to version 3.4.0
* Major changes since the 3.2 series + DAV improvements + Improved performance for users with large folders + LITERAL- maximum size is now honoured (RFC 7888) + Support for the ESORT (but not CONTEXT) extension from RFC 5267 + Experimental JMAP for Sieve Scripts support (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + Experimental Handling Message Disposition Notification with JMAP support (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + Experimental JMAP Backup extension (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + Experimental JMAP Notes extension (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + Experimental JMAP Blob extension (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + Experimental JMAP Mail extension (requires jmap_nonstandard_extensions: yes in imapd.conf(5)). + New cyrus.index format v17 adds changes_epoch field, needed by JMAP Backups extension + New reverseuniqueids imapd.conf(5) option (default on), which improves performance for users with large mailboxes + Further improvements to the reverseacls imapd.conf(5) performance option + Improvements to replication reliability and performance + Experimental vnd.cyrus.log and vnd.cyrus.jmapquery Sieve extensions + Experimental Sieve Snooze extension based on draft-ietf-extra-sieve-snooze + Experimental Sieve mailboxid extension based on draft-ietf-extra-sieve-mailboxid + Improvements to conversations + New mailbox_maxmessages_addressbook, mailbox_maxmessages_calendar, and mailbox_maxmessages_email imapd.conf(5) options for providing server-wide limits on the amount of objects in any one mailbox, independently of quotas. These default to 0 (unlimited) for backward compatibility, but are highly recommended for protecting your server from misbehaving clients. + New IMAP create/delete behaviour based on draft-ietf-extra-imap4rev2: mailboxes containing child mailboxes can no longer be deleted; and when creating mailboxes, ancestors will be created as needed. + CRC32 optimisations + quota(8) and cyr_expire(8) arguments are now in the admin namespace like other tools + Support for per-language indexing and searching + SNMP support has been removed, as it was broken and unmaintained + New sync_rightnow_channel imapd.conf(5) option to enable real-time replication to the specified channel as writes occur. + Caching of mailbox state for quicker replication turnaround. Configure sync_cache_db and sync_cache_db_path in imapd.conf(5) to enable. + New search-fuzzy-always annotation allows per-user override of the search_fuzzy_always imapd.conf(5) option + New lmtp_preparse imapd.conf(5) option for parsing incoming messages before locking the mailbox. + New search_index_skip_users and search_index_skip_domains imapd.conf(5) options for skipping indexing of particular users/domains. + The HTTP Admin module\'s Currently Running Services feature now works on the major BSDs (thanks Felix J. Ogris) + squatter(8) once again supports the -s option to skip reindexing mailboxes which were not modified since the last index (Squat backend only) + squatter(8) now supports long options + Improvements to search query normalisation performance
* Updates to default configuration The cyr_info(8) conf, conf-all and conf-default subcommands accept an - s argument to highlight imapd.conf(5) options that are new or whose behaviour has changed since the specified version. We recommend using this when evaluating a new Cyrus version to check which configuration options you will need to examine and maybe set or change during the process. + The annotation_definitions file is now loaded case-insensitively + Implementations may want to revisit their search_normalisation_max settings, but its default value 1000 is a good conservative choice. Current server-grade hardware may use 20000 or more.
* Significant bugfixes + Fixed: Sieve Editheader Extension (RFC 5293) now works correctly with respect to section 7, Interaction with Other Sieve Extensions. + Fixed: indexed search now works correctly with Squat engine again (gh#cyrusimap/cyrus-imapd#2598)- configuration changes
* remove CYRUS_SNMP_OPTIONS from /etc/sysconfig/cyrus-imapd as SNMP support has been removed
* add some resource control settings to cyrus-imapd.service file + TasksMax=2048 + LimitNOFILE=10000 + Restart=on-failure + RestartSec=5- spec file changes
* obsolete cyrus-imapd-snmp and cyrus-imapd-snmp-mibs as SNMP support has been removed
* Tue Mar 23 2021 Matthias Fehring - update to versino 3.3.91 (aka. 3.4.0-rc1)
* no separate changelog available for this version, but have a look at https://www.cyrusimap.org/3.4/imap/download/release-notes/3.4/x/3.4.0-rc1.html
* before upgrading you should also read the documentation at https://www.cyrusimap.org/3.4/imap/download/upgrade.html
* Fri Feb 19 2021 Matthias Fehring - update to version 3.3.83 (aka. 3.4.0-beta3)
* no separate changelog available for this version, but have a look at https://www.cyrusimap.org/3.4/imap/download/release-notes/3.4/index.html
* before upgrading you should also read the documentation at https://www.cyrusimap.org/3.4/imap/download/upgrade.html
* Thu Feb 04 2021 Matthias Fehring - update to version 3.3.82 (aka. 3.4.0-beta)
* no separate changelog available for this version, but have a look at https://www.cyrusimap.org/3.4/imap/download/release-notes/3.4/index.html
* before upgrading you should also read the documentation at https://www.cyrusimap.org/3.4/imap/download/upgrade.html
* Wed Dec 16 2020 Matthias Fehring - update to version 3.3.1
* no changelog available
* before upgrading you should also read the documentation at https://www.cyrusimap.org/dev/imap/download/upgrade.html- remove snmp sub packages as snmp support has been removed, also remove cmu.mib file- remove cld2 bcond as it is required for xapian support and not optional if xapian is enabled- remove patches now included upstream
* cyrus-imapd-3.0.13-fix-typo-archivepartition-validation.patch
* cyrus-imapd-3.0.13-disable-sse42.patch
* cyrus-imapd-3.2.2-fix-underflow.patch
* cyrus-imapd-3.3.0-fix-webdav-mkcol-and-proppatch.patch
* cyrus-imapd-3.3.0-fix-fall-back-regular-archive-missing.patch- update patches
* cyrus-imapd-3.3.1-fix-perl-linking.patch
* Thu Sep 10 2020 Matthias Fehring - fix replication issue on expunge from 2.4.20 to 3.2.2 [gh#cyrusimap/cyrus-imapd#3120]
* cyrus-imapd-3.2.3-fix-fall-back-regular-archive-missing.patch
* Thu Sep 10 2020 Matthias Fehring - fix to allow MKCOL and PROPPATCH to work
* cyrus-imapd-3.3.0-fix-webdav-mkcol-and-proppatch.patch- fix installation of the tools into the libexec directory
* Fri Jul 31 2020 Matthias Fehring - use %%{_libexecdir}/cyrus/bin instead of %%{_prefix}/lib/cyrus/bin for --libexecdir and --sbindir- do not set --bindir and install the utils executables into %%_bindir- set correct path to cyrus binaries in cyrus-imapd.service and the custom backup script- remove shebang from some Perl files- remove pointless libtool archive files instead of exclude them from the file list- remove obsolete cyrus-imapd-2.5.13_implicit-definitions.patch- improve Cassandane integration test suite but do not enabled it because there are still errors
* fix cassandane-fix-annotator.patch
* change working directory to /srv/cass because having the working directory inside the build root exceeds the maximum length of socket path strings allowed by the underlying Perl modules
* add urlauth-binary to the list of suppressed imaptest tests
* change prefix path to /usr to fix wrong Perl INC paths
* add cassandane-set-libexecdir.patch to find the cyrus executables
* requires net-tools-deprecated instead of net-tools because Cassandane still requires netstat
* add zoneinfo_dir with correct path to cassandane.ini
* Wed Jul 29 2020 Matthias Fehring - enable Sender Rewriting Scheme support for SIEVE redirects- remove build requirement for tcpd-devel, not needed anymore
* Wed Jul 29 2020 Matthias Fehring - add cyrus-timezones to the build and runtime requirements as it contains the vzic tool and the time zone data needed for tzdist- set path to zoneinfo_dir in imapd.conf
* Wed Jul 29 2020 Matthias Fehring - update to version 3.3.0
* no changelog available
* before upgrading you should also read the documentation at https://www.cyrusimap.org/dev/imap/download/upgrade.html- enable backup support- add vim to BuildRequires as xxd is needed
* Tue Jul 28 2020 Matthias Fehring - explicitely require libpcreposix0 >= 8.42 because of gh#cyrusimap/cyrus-imapd/3125 as that version in openSUSE contains the needed patch
* Tue Jul 28 2020 Matthias Fehring - require pcre >= 8.42 for building to fix gh#cyrusimap/cyrus-imapd/3125 - it not really requires pcre >= 8.42 but a pcre that has a specific patch applied for pcreposix
* Tue Jul 28 2020 Matthias Fehring - add Cassandane integration test suite inspired by the Fedora packages but disable it for now because of too many errors- enable position-independent executables
* Mon Jul 27 2020 Matthias Fehring - only require cld2 if xapian is enabled
* Sun Jul 26 2020 Matthias Fehring - updated to version 3.2.2
* as this is a big jump have a look at the complete changelog at https://www.cyrusimap.org/imap/download/release-notes/3.2/index.html
* before upgrading you should also read the documentation at https://www.cyrusimap.org/3.2/imap/download/upgrade.html- removed obsolete patches now included upstream
* cyrus-imapd-3.0.13-recent-libcap-compatibility.patch
* cyrus-imapd-3.0.13-mboxtree_deleted-needs-trailing-dot.patch
* cyrus-imapd-3.0.13-fix-cmdline-backups-mboxnames.patch- removed patches not needed anymore
* cyrus-imapd-3.0.13-increase-unit-test-timeout.patch - tests run with default value
* cyrus-imapd-2.5.13-vzic-proper-cflags.patch - vzic is not included anymore- updated patches
* cyrus-imapd-3.2.2-fix-perl-linking.patch- new patches
* cyrus-imapd-3.2.2-use-python3.patch- new (optional) build dependencies
* python3-Sphinx - needed for generating man pages
* python3-GitPython - needed for generating man pages
* perl(Pod::POM::View::Restructured) - needed for generating man pages
* pkgconfig(libwslay) - for websocket support in the http server
* pkgconfig(libzstd) - for zstd support in the http server
* pkgconfig(chardet) - for JMAP support (not enabled by default)
* pkgconfig(libzeroskip) - for zeroskip database format (not enabled by default)- removed build dependencies not needed anymore
* pkgconfig(glib-2.0) - was needed by vzic
* lmdb-devel - was needed by removed lmdb support
* Sat Jul 25 2020 Matthias Fehring - update to version 3.0.13
* as this is a big jump have a look at the complete changelog at https://www.cyrusimap.org/imap/download/release-notes/3.0/index.html
* before upgrading you should also read the documentation at https://www.cyrusimap.org/3.0/imap/download/upgrade.html- use systemd-tempfiles to create runtime directories in /run- update default configuration to current cyrus examples and store some db files and directories in the runtime directory /run/cyrus-imapd- remove obsolete and/or unmaintained patches
* cyrus-imapd-2.5.15-openslp.patch
* cyrus-imapd-2.4.17_openslp.patch
* cyrus-imapd-2.5.13_syslog-facility-doc.patch
* cyrus-imapd-2.5.13_db6.patch
* cyrus-imapd-2.5.13-glibc-2.30-compatibility.patch- add new patches
* cyrus-imapd-3.0.13-fix-cmdline-backups-mboxnames.patch
* cyrus-imapd-3.0.13-mboxtree_deleted-needs-trailing-dot.patch
* cyrus-imapd-3.0.13-fix-typo-archivepartition-validation.patch
* cyrus-imapd-3.0.13-fix-perl-linking.patch
* cyrus-imapd-3.0.13-disable-sse42.patch
* cyrus-imapd-3.0.13-recent-libcap-compatibility.patch- build and install notifytest- enable and run unit tests- cleanup spec file
* remove all the rests of SysV init support
* remove DB_CONFIG as cyrus does not support Berkeley DB anymore- add cyrus-imapd-rpmlintrc to suppress some unnecessary warnings
* Thu Jul 09 2020 Matthias Fehring - remove obsolete patches now included upstream
* cyrus-imapd-2.4.18-D19-Outlook_2013_XLIST.patch- add cyrus-imapd-2.5.15-openslp.patch to implement supoort for OpenSLP, but do not use it right now as it is not ready- cleanup spec file
* remove SysV init scripts
* remove conditionals for old openSUSE releases
* remove unnecessary dependencies- use conditional builds with bcond
* enable SQLite support
* enable PostgreSQL support
* enable MySQL/MariaDB support
* Thu Jul 02 2020 Matthias Fehring - require pkgconfig(libical) < 3.0.0 for building- enable http on openSUSE Tumbleweed- remove obsolete cyrus-imapd-2.5.13-libical3-compatibility.patch
* Thu Jan 09 2020 Matthias Fehring - update to version 2.5.15
* Fixed CVE-2019-19783: When creating a missing mailbox as part of a sieve ‘fileinto’ directive, lmtpd would create it as administrator, bypassing ACL checks. lmtpd creates missing mailboxes as part of a sieve ‘fileinto’ directive if:
* (2.5+) the anysievefolder option is enabled (default: not), or
* (3.0+) the sieve_extensions option has the ‘mailbox’ extension enabled (default: enabled) and the ‘fileinto’ directive contains the ”:create” argument Under these conditions, a user with the ability to upload a custom sieve script to their account could use it to create any valid mailbox on the server (with ACL inherited from the parent mailbox as usual). lmtpd no longer creates these mailboxes as administrator, so users may no longer use a ‘fileinto’ directive to create a mailbox they couldn’t create otherwise.
* Fixed Issue #2913: errors are now logged when maxlogins_per_host, maxlogins_per_user, and popminpoll limits are reached (thanks Sergey)
* Thu Nov 28 2019 Matthias Fehring - update to version 2.5.14
* Fixed CVE-2019-18928: unauthenticated HTTP requests no longer inherit authentication from the previous request on the same connection
* Can now build against ClamAV >= 0.101 (thanks Christoph Moench-Tegeder)
* Fixed Issue #2877: quota -f now works correctly with improved_mboxlist_sort: no
* Fixed Issue #2808: UNDUMP no longer crashes when quota needs updating- removed patches now included upstream
* cyrus-imapd-2.5.13-clamav-0.101-compatibility.patch
* Tue Oct 22 2019 Matthias Fehring - httpd.8 has only to be renamed if http is enabled
* Tue Oct 22 2019 Matthias Fehring - rename man page httpd.8 to cyrus_httpd.8 to not conflict with apache2
* Tue Oct 22 2019 Matthias Fehring - fix missing CFLAGS when compiling vzic
* add cyrus-imapd-2.5.13-vzic-proper-cflags.patch
* Tue Oct 22 2019 Matthias Fehring - enable http support on openSUSE older than Tumbleweed (currently cyrus 2.5.13 does not support libical3)
* new build requirement: pkgconfig(libxml-2.0)
* new build requirement: pkgconfig(libical)
* new build requirement: pkgconfig(sqlite3)- enable mailbox event notification
* new build requirement: pkgconfig(jansson)- enable clamav support
* new build requirement: pkgconfig(libclamav)- fix env-script-interpreter on /usr/lib/cyrus/tools/rehash- add perl-Cyrus-Annotator to the runtime requirements- add patches for compatibility with Tumbleweed
* cyrus-imapd-2.5.13-glibc-2.30-compatibility.patch
* cyrus-imapd-2.5.13-libical3-compatibility.patch
* cyrus-imapd-2.5.13-clamav-0.101-compatibility.patch
* Sat Oct 19 2019 Matthias Fehring - update to version 2.5.13
* Fixed CVE-2019-11356: buffer overrun in httpd
* Fixed: ptloader, ptexpire and ptdump now honour the ptscache_db_path setting- update to version 2.5.12
* Fixed: cyr_virusscan now integrates with event notifications properly
* Fixed: mailbox expunge event notifications no longer cause a crash
* Fixed Issue #2378: ACLs containing spaces no longer break mailboxes.db
* Fixed Issue #2253: master now rejects unix domain listen paths that are too long
* Fixed: smilint warnings for CYRUS-MASTER.mib fixed (thanks Fabrice Bacchella)
* Fixed Issue #2177: backend connections no longer ignore STARTTLS failures (thanks Wolfgang Breyha)
* Fixed Issue #2222: dav_reconstruct no longer crashes on expunged entries
* Fixed Issue #2221: dav_reconstruct no longer crashes given bad user id (thanks Wolfgang Breyha)
* Fixed: tls_prune memory leak
* Fixed: tls_prune doesn’t fail when tls_sessions.db is missing
* Fixed Issue #2199: recovery from mupdate failure now in correct order (thanks Michael Menge)
* Fixed: backend connections no longer crash if no banner found
* Fixed: backend connections no longer return success on certain types of failure
* Fixed Issue #2185: squatter no longer tries to index non-IMAP mailboxes (thanks Wolfgang Breyha)
* Fixed: special-use proxying in murder (thanks Wolfgang Breyha)
* Fixed Issue #1090: send OK NIL to subsequent ID commands
* Fixed Issue #1434: auth_pts will now error when given a too-long socket file name
* Fixed Issue #1964: correctly detect when librt is needed
* Fixed Issue #1967: tell EXISTS count earlier when needed
* Fixed: memory leak in httpd DAV support- update to 2.5.11
* Better integration with updated documentation/website infrastructure
* The “timeout” option is now also used as an upper limit in minutes for IDLE connections. A new option “imapidletimeout” can be used to set an idle-specific timeout instead. (Thanks Philipp Gesang.)
* Fixed: invalid free and memory leak in httpd
* Fixed: services no longer exit when client disconnects before accept()
* Fixed Issue #65: no longer use -Wno-sign-compare when unsupported
* Fixed Issue #67: better support for dots in localparts (thanks Jeroen van Meeuwen)
* Fixed: don’t assume LIST section options when proxying
* Fixed: SEARCH crash on some platforms
* Fixed: ensure directory hierarchy created when renaming empty mailboxes
* Fixed Issue #1742: reconstruct no longer crashes when cache records are too short
* Fixed Issue #11: LIST RETURN options now work properly with virtdomains
* Fixed Issue #44: http proxy no longer crashes on starttls (thanks Wolfgang Breyha)
* Fixed Issue #1752: no longer crash on notifyd mailto method
* Fixed Issue #1768: ensure consistency of CalDav ORGANIZER (thanks Дилян Палаузов)
* Fixed Issue #368: SETACL with invalid rights characters now returns BAD
* Fixed Issue #46: renames to remote destinations now work correctly
* Fixed Issue #38: UTF-8 :subject now supported in sieve vacations
* Fixed Issue #1872: no longer crash on bad SSL session ids
* Fixed Issue #1931: missing mysql/mariadb dependencies now reported by configure
* Fixed: various memory and resource leaks (thanks Дилян Палаузов)- update to 2.5.10
* master(8) now supports a “-V” (print version and exit) option
* Fixed Issue #34: imapd in murder no longer crashes on MOVE to nonexistent folder (thanks Wolfgang Breyha)
* Fixed Issue #15: replication no longer crashes on mailboxes that are too old to be replicated. Instead, it fails with an error and logs a warning that they need to be reconstructed
* Fixed Issue #45: extended LIST doesn’t lose options when proxied to backend
* Fixed task 142: extended LIST response no longer missing \\HasNoChildren flag on last mailbox
* Fixed Issue #49: httpd no longer crashes with assertion failure on shutdown after CardDAV has been used
* Fixed Issue #31: the ldap_timeout setting is now used correctly
* Fixed bugzilla #3909: idled(8) no longer runs as root (thanks Carlos Velasco)
* Fixed Issue #5: renaming folder with annotations no longer increases annotation quota usage
* Fixed: URLFETCH crash when section is NULL
* various build system improvements- update to 2.5.9
* ipurge(8) now supports a “-n” (dry run) option (thanks Valentin Vidic)
* Fixed: imapd now proxies LIST (special-use) to backend (thanks John Capo)
* Fixed: sync_client handles its shutdown file more reliably (thanks John Capo)
* Fixed: httpd no longer crashes with assertion failure on shutdown after CalDAV has been used
* Fixed bugzilla #3938: squat search now handles pre-2.5 cyrus.squat data
* Fixed Issue #5: twoskip database I/O performance in unlocked foreach
* various build system improvements- udpate to 2.5.8
* Allow replicated backends in a discrete Murder to both actively participate in the Murder.
* When choosing between ANNOTATEMORE and METADATA, favour what the client used.
* cyr_dbtool(8) now supports improved_mboxlist_sort (-M)
* Fixed: master on pselect systems no longer chokes on repeated interrupts (thanks Jens Erat and team)
* Fixed: better iOS CalDAV support (don’t announce VPOLL)
* Fixed: backported version detection code to detect future versions
* Fixed bug #3927: don’t break cyrus.index on XFER of mailbox with annotations (thanks Wolfgang Breyha)
* Fixed: replication/XFER of mailbox names containing ‘AATT’
* Fixed: METADATA and GETMETADATA pattern/list recognition
* Fixed bug #3862: don’t leave behind inconsistent mailboxes when mupdate fails during mailbox rename
* Fixed compilation with Sun Studio 12 C Compiler (thanks Marty Lee)
* Fixed bug #3765: ctl_cyrusdb(8) now uses database paths from imapd.conf (thanks Simon Matter)
* Fixed task 227: service processes no longer crash with ‘-T 0’ argument (thanks Ian Batten and Jens Erat)
* various build system fixes- update to 2.5.7
* CVE-2015-8077, CVE-2015-8078: protect against integer overflow in urlfetch range checks
* Support for legacy SSLv2 and SSLv3 protocols has been removed
* Support for TLS compression has been removed (thanks Ondřej Surý)
* Fixed bug #3908: crash in ctl_mboxlist -m
* Fixed: setrlimit error on startup
* Fixed task 216: don’t break quotas when transferring mailboxes between backends
* Fixed: idled shutdown on platforms without pselect (thanks Thomas Jarosch)
* Fixed: autocreate_sieve now uses sievedir setting correctly
* Fixed bug #3907: cyradm --cadir option is now called --capath, and works (thanks Leena Heino)
* Fixed bug #3905: fix segfault in all daemons when built with -DUSE_SETPROCTITLE
* Fixed: pop3d no longer applies plaintextloginpause to TLS connections
* Fixed bug #3866: lmtpd now consults local mailboxes.db first, before mupdate master (thanks Michael Menge)- update to 2.5.6
* tls_required (default: 0). Set this to 1 to require a TLS session for ALL authentications, not just plain ones (thanks Carlos Velasco)
* new cyradm options + –tlskey keyfile: use certificate with keyfile to authenticate with server + –notls: disable StartTLS negotiation + –cafile cacertfile: Use CA certificate file to validate server certificate + –cadir cacertdirectory: Use CA certificate directory to validate server certificate
* Fixed: cyr_synclog checks its arguments more strictly to avoid producing junk sync loc entries
* Fixed: cyradm metadata implementation cleaned up and output made consistent (thanks Leena Heino)
* Fixed: timsieved no longer discloses name/version if ServerInfo is Off or Min (thanks Carlos Velasco)- update to 2.5.5
* Security fix: compiling with –enable-autocreate no longer allows arbitrary mailbox creation
* Fixed task 207: don’t segfault on mboxutil -d of MBTYPE_DELETED mailboxes (thanks Chris Stromsoe)
* Fixed lock management over rename (thanks Thomas Jarosch)
* Miscellaneous other fixes (thanks Thomas Jarosch)- update to 2.5.4
* Security fix: handle urlfetch range starting outside message range
* Fixed bug: better error messages when reading corrupted twoskip databases
* Fixed bug: treat autocreate_quota_messages:0 as unlimited
* Fixed task 203: make autocreate_quota:0 work as documented- update to 2.5.3
* Fixed task 183: don’t crash on login when event notifications are enabled- update to 2.5.2
* Fixed task 179: ptloader should no longer crash in ptsmodule_standard_root_dn
* Improved consistency of event notification parameters
* Fixed bug: no longer run out of memory in mupdate with twoskip (mmap leak)
* Fixed bug: no longer crash on ctl_mboxlist -d for remote mailboxes
* Fixed bug: no longer include RFC 5322 header fields when fetching CALDAV:calendar-data
* Fixed bug: properly handle same XML namespace used with 2 different prefixes in requests- update to 2.5.1
* Fixed: allow SYNC_CRC to be optional, making upgrades easier in future
* Fixed: XFER deletes source mailbox less aggressively, avoiding data loss under pathological conditions
* Fixed task 163 : XFER no longer bails out on header CRC mismatch
* Fixed task 117 : now error out silently on non-TLS connections to services with implicit TLS
* Fixed reconstruct bug: upgrading mailbox format now adds GUIDs to shared folders (Thanks Norbert Warmuth)
* Fixed task 165 : xfer no longer fails due to bad version comparison
* Fixed xfer bug: version 2.5 is now detected properly
* Fixed task 109 : XLIST behaviour is now compatible with Outlook 2013 (Thanks Leena Heino)
* Fixed task 116 : LIST now correctly handles domains starting with “inbox.”
* Fixed task 120 : admin users can now SETANNOTATION correctly
* Fixed task 118 : imapd no longer crashes when selected mailbox is listed
* Fixed task 156 : LMTP no longer incorrectly rejects messages delivered using ‘deliver’
* Fixed task 76 : lmtpd no longer crashes when delivering to a shared mailbox (Thanks Leena Heino)
* Fixed quota bug: no longer crash when setting quotas on shared folder hierarchies
* Fixed compilation problem on Solaris 10 (Thanks Leena Heino)
* Fixed bug: QuotaChange event notification now always includes maxMessages parameter
* Fixed bug: event notifications now include paths for shared folders
* Fixed bug: GETMETADATA now handles mailbox patterns correctly
* Various fixes to compiling and tool chains
* changes to cyradm + createmailbox command now accepts –specialuse flag if server supports CREATE-SPECIAL-USE + listmailbox command now returns special-use attribute if server supports SPECIAL-USE + listmailbox command now accepts –specialuse flag to list only mailboxes with special-use attribute + cyradm now uses LIST and REMOTE rather than RLIST if server supports LIST-EXTENDED + mboxconfig now accepts –private flag to switch from default shared to private version of an annotation + getmetadata: new command + setmetadata: new command + Cyrus::IMAP::Admin::getinfo now returns a different data structure to support the above + Cyrus::IMAP::Admin new ACL flag for modifying annotations- update to version 2.5.0
* Underscores (the _ character) are no longer allowed in the START, SERVICES and EVENTS sections of cyrus.conf(5), as they interfere with configuration options in imapd.conf(5) being prefixed by service names and an underscore (_) character.
* Extended Quota Types: New ways to restrict resource usage: Number of Folders, Number of Messages, Number of Annotations
* CalDAV and CardDAV Support
* Support for RFC 5464: IMAP METADATA
* Event Notifications
* The database format for mailboxes.db has been upgraded, adding a new mailbox type for deleted mailboxes. A key-value storage format is used, allowing for faster and better parsing of mailboxes.db, more granular updates to runtime environments, and more sustainable future upgrades.
* New database format twoskip
* Allowing Undefined Annotations
* Catchall Mailbox for LMTP
* Option Name Changes for autocreate: The options related to automatic creation of user mailboxes and sub-folders (aka. autocreate) have been changed to hold a prefix of autocreate_.
* The default for the imapd.conf(5) configuration option delete_mode has changed from immediate to delayed.
* The default for the imapd.conf(5) configuration option expunge_mode has changed from default to delayed.
* Configuration option names for LDAP SSL/TLS configuration in imapd.conf(5) have been changed.
* Configuration option names for SSL/TLS configuration in imapd.conf(5) have been changed to better reflect how they are used, as enhancements would otherwise create great confusion.
* New Options for tls_
*- add new package libcyrus0- removed patches now included upstream
* cyrus-imapd-2.4.19_autocreate-0.10-0.patch
* cyrus-imapd-2.4.17_lmtp_catchall_mailbox.patch
* cyrus-imapd-2.4.17_ptloader-ldap_user_attribute.patch- rebased patches
* cyrus-imapd-2.3.16_syslog-facility-doc.patch as cyrus-imapd-2.5.13_syslog-facility-doc.patch
* cyrus-imapd-2.4.17_db6.patch as cyrus-imapd-2.5.13_db6.patch
* cyrus-imapd-2.4.18-implicit_definitions.patch as cyrus-imapd-2.5.13_implicit-definitions.patch- currently disabled patches
* cyrus-imapd-2.4.17_openslp.patch
* cyrus-imapd-2.4.17_pie.patch
* cyrus-imapd-2.4.18-D19-Outlook_2013_XLIST.patch
* Fri Jul 19 2019 matthias.gerstnerAATTsuse.com- removal of SuSEfirewall2 service, since SuSEfirewall2 has been replaced by firewalld, see [1]. [1]: https://lists.opensuse.org/opensuse-factory/2019-01/msg00490.html
* Wed Jan 23 2019 liedkeAATTrz.uni-mannheim.de- Update to 2.4.20
* Fixed: lmtpd crash
* Fixed: auth_pts will now error if its configured socket path is too long for its buffer- Removed cyrus-imapd-2.4.19-lmtpd_crash.patch
* Wed Jan 16 2019 Peter Varkoly - bsc#1119629 cyrus-imapd.service contains bogus User and Groupi specification- bsc#1115999 Please convert SysV init scripts by cyrus-imapd into native systemd services - Removed User and Group from the service file
* Tue Dec 04 2018 Jan Engelhardt - Avoid repeated emission of the %service_
* boilerplate.
* Mon Dec 03 2018 Matthias Fehring - Fixed startup of cyrus-imapd when using native systemd service by setting RuntimeDirectory=cyrus-imapd in the service file
* Wed Nov 28 2018 Peter Varkoly - cyrus-imapd: migrate from cron to systemd timers (bsc#1115438) Created script service and timer replacing cron daily script
* Wed Nov 28 2018 Peter Varkoly - Please convert SysV init scripts by cyrus-imapd into native systemd services (bsc#1115999) Fixed using the with_systemd macro
* Thu Nov 23 2017 rbrownAATTsuse.com- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)
* Wed Oct 25 2017 rhaferAATTsuse.de- Removed \"cyrus-imapd-2.4.19_drac_auth.patch\" and dropped drac from the BuildRequires. DRAC\'s upstream is bascially dead nowadays, and the drac patch in cyrus-imapd is also largely unmaintained. Rebased cyrus-imapd-2.4.17_openslp.patch and cyrus-imapd-2.4.19_autocreate-0.10-0.patch as a result of the removal.
* Mon Jul 10 2017 jengelhAATTinai.de- Remove filler wording from description.- Improve find commands.
* Sun Jun 25 2017 ajAATTajaissle.de- Add cyrus-imapd-2.4.19-lmtpd_crash.patch:
* lmtpd: fix uninitialised variable crash [boo#1045899]
* Wed Jun 21 2017 ajAATTajaissle.de- Rebased patch:
* cyrus-imapd-2.4.18-implicit_definitions.patch as cyrus-imapd-2.4.19-implicit_definitions.patch Add fix for implicit-fortify-decl in ldap.c
* Wed Jun 14 2017 ajAATTajaissle.de- Update to 2.4.19
* Complete backport of the new (2.5 and later) IMAP IDLE implementation (thanks Thomas Jarosh). This fixes a bunch of bugs and race conditions that were inherent to the older implementation
* New option “imapidletimeout” overrides “timeout” specifically for connections in IDLE state
* OpenSSL 1.1.0 is now supported
* Fixed: imap ENABLED doesn’t print
* ENABLED when nothing new enabled
* Fixed: mailbox lock management over rename (thanks Thomas Jarosh)
* Fixed: added overflow protection to urlfetch range checks
* Fixed: lmtpd can now deliver when mupdate server isn’t available (thanks Michael Menge)
* Fixed task 227: service processes no longer divide by zero when invoked with -T 0 argument (thanks Ian Batten and Jens Erat)
* Fixed task 229: ctl_cyrusdb now uses database paths from imapd.conf (thanks Simon Matter)
* Fixed bug #3862: mailbox database changes now rolled back on mupdate failure during rename (thanks Michael Menge)
* Fixed: XFER to 2.5 and later no longer downgrades index to oldest version
* Fixed: nonsensical “TEXT.MIME” section now handled as “HEADER”
* Fixed: added missing ‘auditlog: ‘ prefix to backend connections (thanks Wolfgang Breyha)
* Fixed: IMAP SEARCH crash on some platforms
* Fixed: memory leaks in IMAP SEARCH and IMAP APPEND
* Fixed Issue #1967: EXISTS count reported earlier if fetching past size of previous message set- Rebased patches:
* cyrus-imapd-2.4.17_drac_auth.patch as cyrus-imapd-2.4.19_drac_auth.patch
* cyrus-imapd-2.4.17_autocreate-0.10-0.patch as cyrus-imapd-2.4.19_autocreate-0.10-0.patch- Removed patches: - cyrus-imapd-2.4.18-CVE-2015-8077.patch (upstream) - cyrus-imapd-2.4.18-CVE-2015-8078.patch (upstream)- Added cyrus-imapd-2.4.19.tar.gz.sig
* Fri May 27 2016 tchvatalAATTsuse.com- Try to cleanup with spec-cleaner- Remove exit 0 in pre that stopped execution of the rest of the code- Update pre/post requires to be acutally correct- Disable stict-aliasing to avoid some problems
* Mon Dec 21 2015 ajAATTajaissle.de- Add cyrus-imapd-2.4.18-D19-Outlook_2013_XLIST.patch to add Outlook 2013-compatible XLIST behaviour.
* Sun Nov 15 2015 ajAATTajaissle.de- Added cyrus-imapd-2.4.18-CVE-2015-8077.patch: boo#954200, CVE-2015-8077: Integer overflow in range checks- Added cyrus-imapd-2.4.18-CVE-2015-8078.patch: boo#954201, CVE-2015-8078: Integer overflow in index_urlfetch
* Sun Aug 23 2015 ajAATTajaissle.de- Update to 2.4.18 [boo#945844]
* Security fix: handle urlfetch range starting outside message range
* A bunch of cleanups and fixes to compiling
* A bunch of sieve cleanups
* Enhanced SSL/TLS configuration options
* Disable use of SSLv2/SSLv3
* Allow SQL backend for mboxlist and statuscache (thanks Julien Coloos)
* Fixed Task #116: correct LIST response for domains starting with ‘inbox.’
* Fixed Task #76: fixed lmtpd userdeny db checks (thanks Leena Heino)
* Fixed bug #3856: lmtpd now performs userdeny checks
* Fixed bug #3848: support charset aliases in encoded headers
* Fixed bug #3853: disconnect_on_vanished_mailbox: release mailbox lock before exiting (thanks Wolfgang Breyha)
* Fixed bug #3415: fixed nntpd LIST/GROUP bug
* Fixed bug #3784: no longer crash in THREAD REFERENCES when messages reference themselves
* Fixed bug #3757: don’t segfault on mailbox close with no user
* New ssl/tls configuration options tls_compression: 0 Enable TLS compression. Disabled by default. tls_eccurve: prime256v1 Select the elliptic curve used for ECDHE. tls_prefer_server_ciphers: 0 Prefer the cipher order configured on the server-side. tls_versions: tls1_0 tls1_1 tls1_2 Disable SSL/TLS protocols not in this list.- Removed the following patches (included upstream): - cyrus-imapd-2.4.17_tls-session-leak.patch - cyrus-imapd.tls_options.patch- Added patch cyrus-imapd-2.4.18-implicit_definitions.patch: - Have the correct #include when using implicit definitions
* Mon Dec 08 2014 ajAATTajaissle.de- Changed cyrus-imapd-rc-2.tar.gz/cron.daily.cyrus to use \'su -s /bin/bash - cyrus\', as the default shell is now /sbin/nologin [boo#908014]- Changed cyrus-imapd-rc-2.tar.gz/rc.cyrus to set /var/run/cyrus-master.pid as the PID file (was: /var/run/cyrus.pid) [boo#908006]
* Fri Nov 21 2014 tchvatalAATTsuse.com- Drop unused patch:
* KOLAB_cyrus-imapd-2.3.18_cross-domain-acls.patch
* Fri Nov 14 2014 rhaferAATTsuse.com- Replace the TLS/POODLE patch with what was merged into the upstream git repo:
* cyrus-imapd.tls_options.patch
* Obsoletes patches cyrus-imapd.tls_tlsonly.patch and cyrus-imapd.tls_ec.patch- Add a default tls_versions settings to imapd.conf which disables POODLE affected SSL versions.
* Sat Oct 18 2014 johannesAATTlst.de- Add two patches from Kristian Kraemmer Nielsen found on the info-cyrus mailing list (http://lists.andrew.cmu.edu/pipermail/info-cyrus/2014-October/037708.html)
* cyrus-imapd.tls_ec.patch - adding tls_ec for Perfect Forward Secrecy
* cyrus-imapd.tls_tlsonly.patch - add tlsonly config option to fix POODLE vulnerability
  
ICM