mutt (2.2.12-0.1~deb12u1) bookworm; urgency=medium
* Non-maintainer upload.
* New upstream release.
-- Sebastian Andrzej Siewior <sebastian@breakpoint.cc> Sat, 16 Sep 2023 22:48:56 +0200
mutt (2.2.9-1+deb12u1) bookworm-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix rfc2047 base64 decoding to abort on illegal characters.
(CVE-2023-4874, CVE-2023-4875) (Closes: #1051563)
* Check for NULL userhdrs. (CVE-2023-4875) (Closes: #1051563)
* Fix write_one_header() illegal header check. (CVE-2023-4874)
(Closes: #1051563)
-- Salvatore Bonaccorso <carnil@debian.org> Sun, 10 Sep 2023 12:57:40 +0200
mutt (2.2.9-1) unstable; urgency=medium
* New upstream release
+ Fixes a FTBFS with gpgme1.0 >= 1.18.0-2 (Closes: 1023599)
-- Antonio Radici <antonio@debian.org> Sun, 13 Nov 2022 18:01:34 +0100
mutt (2.2.7-1) unstable; urgency=medium
* New upstream release.
* debian/control: Standards-Version upgraded to 4.6.1, no changes needed.
* debian/mutt.lintian-overrides:
+ s/setgid-binary/elevated-priviliges due to the new lintian override
name
+ missing-sources overridden for .html files.
-- Antonio Radici <antonio@debian.org> Sat, 03 Sep 2022 13:43:03 +0200
mutt (2.2.6-1) unstable; urgency=medium
* New upstream release.
-- Antonio Radici <antonio@debian.org> Sat, 09 Jul 2022 06:52:56 +0200
mutt (2.2.4-1) unstable; urgency=medium
* New upstream release.
-- Antonio Radici <antonio@debian.org> Sun, 08 May 2022 18:31:32 +0200
mutt (2.2.3-2) unstable; urgency=medium
* Replace cyrus-sasl with gsasl (Closes: #999672)
+ patch provided by Bastian Germann (<bage@debian.org>).
-- Antonio Radici <antonio@debian.org> Wed, 27 Apr 2022 09:52:31 +0200
mutt (2.2.3-1) unstable; urgency=medium
* New upstream release.
+ includes fix for CVE-2022-1328.
* debian/patches:
+ all refreshed.
+ removed upstream/1001013-smtp-auth-regression.patch, already upstream.
-- Antonio Radici <antonio@debian.org> Fri, 15 Apr 2022 23:17:39 +0200
mutt (2.1.4-1) unstable; urgency=medium
* New upstream release.
* debian/patches:
+ upstream/1001013-smtp-auth-regression.patch: removes a regression where
SMTP auth is mandated if available (Closes: 1001013).
* debian/control:
+ removed dependency on mixmaster, removed from archives long time ago.
+ s/mime-support/mailcap, as mime-support is now a transition package
(Closes: 979020).
-- Antonio Radici <antonio@debian.org> Wed, 15 Dec 2021 09:35:18 +0100
mutt (2.1.3-1) unstable; urgency=medium
* Latest upstream release
+ contains the fix for a potential data-loss IMAP bug (Closes: 992927)
+ debian/patches:
- removed the following patches already upstream:
* upstream/980924-updated-german-translation.patch
* upstream/985152-body-color-slowness.patch
* upstream/Fix-seqset-iterator-when-it-ends-in-a-comma.patch
- All patches refreshed
* debian/control:
+ Standards-Version updated from 4.5.0 to 4.6.0.1, no changes needed.
* debian/watch: version updated from 3 to 4, no changes needed.
* debian/source/lintian-overrides: removed testsuite-autopkgtest-missing,
not needed.
-- Antonio Radici <antonio@debian.org> Sat, 27 Nov 2021 14:05:57 +0100
mutt (2.0.5-4.1) unstable; urgency=medium
* Non-maintainer upload.
* Fix seqset iterator when it ends in a comma (CVE-2021-32055)
(Closes: #988106)
-- Salvatore Bonaccorso <carnil@debian.org> Sun, 06 Jun 2021 21:11:36 +0200
mutt (2.0.5-4) unstable; urgency=medium
* debian/patches:
+ upstream/985152-body-color-slowness.patch: fixes slowness (up to tens of
seconds) if body coloring is present (Closes: 985152).
-- Antonio Radici <antonio@debian.org> Sat, 20 Mar 2021 17:26:12 +0100
mutt (2.0.5-3) unstable; urgency=medium
* debian/patches:
+ upstream/980924-updated-german-translation.patch: refreshed German
translation (Closes: 980924).
-- Antonio Radici <antonio@debian.org> Tue, 16 Feb 2021 21:34:09 +0100
mutt (2.0.5-2) unstable; urgency=medium
* debian/mutt.mime:
+ removed mutt as viewer for message/rfc822, changed that
to application/mbox (Closes: 627134).
+ removed quotes in the mime entry, as it is unsafe (Closes: 982680).
-- Antonio Radici <antonio@debian.org> Sat, 13 Feb 2021 20:05:26 +0100
mutt (2.0.5-1) unstable; urgency=medium
* Latest upstream release
+ contains fix for CVE-2021-3181.
* debian/patches: all refreshed.
-- Antonio Radici <antonio@debian.org> Sun, 24 Jan 2021 09:58:18 +0100
mutt (2.0.2-1) unstable; urgency=medium
* New upstream release.
+ contains important fix for CVE-2020-28896.
+ some default values were changed as mutt switched to 2.x,
check NEWS.Debian for more details.
* debian/patches: all refreshed; the following were removed because they
are already upstream:
+ upstream/433829-reply-to-before-reply-self.patch
+ upstream/521405-decode-clobber-weed.patch
+ upstream/802613-space-stuffing-flowed/attachment-handling.patch
+ upstream/802613-space-stuffing-flowed/mutt-pipe-attachment.patch
+ upstream/802613-space-stuffing-flowed/mutt-print-attachment.patch
+ upstream/802613-space-stuffing-flowed/mutt-save-attachment.patch
+ upstream/802613-space-stuffing-flowed/mutt-view-attachment.patch
+ upstream/861572-pgp-sign-inline-message.patch
-- Antonio Radici <antonio@debian.org> Sun, 22 Nov 2020 11:59:19 +0100
mutt (1.14.6-1) unstable; urgency=medium
* New upstream release.
* debian/rules:
+ removed --enable-exact-address, it introduced a regression
(Closes: 965200, 966456).
* debian/patches:
+ added upstream/861572-pgp-sign-inline-message.patch to deal with
verification fo inline-signed emails (Closes: 861572).
+ added upstream/433829-reply-to-before-reply-self.patch to respect
reply-to when replying to yourself (Closes: 433829).
+ added upstream/521405-decode-clobber-weed.patch not to clobber header
when decode-save/copy is called and weed is set to yes (Closes: 521405).
+ added 802613-space-stuffing-flowed/*.patch not to revert to
space-stuffing when saving format=flowed messages (Closes: 802613).
+ added debian-specific/530584-default-tmpdir-to-var-tmp{,-docs}.patch
to switch the default draft dir to /var/tmp (Closes: 530584).
-- Antonio Radici <antonio@debian.org> Sun, 02 Aug 2020 08:46:21 +0200
mutt (1.14.5-1) unstable; urgency=medium
[ Debian Janitor ]
* Trim trailing whitespace.
* Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
Repository-Browse.
[ Antonio Radici ]
* New upstream release.
* debian/rules
+ enabled --enable-exact-address so that we follow RFC2822 (Closes: 698267)
+ switched to libidn2 rather than libidn (Closes: 932698)
* debian/patches:
+ removed upstream/imap-preauth-and-ssh-tunnel.patch, no longer needed.
-- Antonio Radici <antonio@debian.org> Mon, 29 Jun 2020 16:49:31 +0200
mutt (1.14.4-2) unstable; urgency=medium
* debian/patches:
+ added imap-preauth-and-ssh-tunnel.patch from upstream, which does not
check IMAP preauth in SSH tunnels (Closes: 963107)
* debian/control:
+ Standards-Version bumped to 4.5.0, no change required.
+ Set debhelper-compat in B-D.
* debian/upstream/metadata: added the correct repository.
* debian/watch:
+ switched from FTP on mutt.org to HTTPS on bitbucket.org,
both URLs are listed on the website and are officially endorsed by the
mutt maintainer.
* debian/upstream/signing-key.asc: re-exported to be minimal (i.e.
export-options=export-minimal,export-clean)
* debian/rules:
+ remove --enable-nntp as there is no NNTP patch in mutt (Closes: 948328)
-- Antonio Radici <antonio@debian.org> Sat, 20 Jun 2020 16:41:32 +0200
mutt (1.14.4-1) unstable; urgency=medium
* New upstream release.
+ Contains a fix for a possible MITM response injection attack when using
STARTTLS with IMAP, POP3 and SMTP. The CVE is not yet released.
-- Antonio Radici <antonio@debian.org> Fri, 19 Jun 2020 06:45:02 +0200
mutt (1.14.3-1) unstable; urgency=medium
* New upstream release.
+ Fixes CVE-2020-14093 (Closes: 962897)
+ Fixes failures on non-linear cert chains (Closes: 961894)
-- Antonio Radici <antonio@debian.org> Wed, 17 Jun 2020 10:46:34 +0200
mutt (1.14.0-1) unstable; urgency=medium
* New upstream release.
* debian/patches:
+ all patches refreshed.
-- Antonio Radici <antonio@debian.org> Sat, 16 May 2020 07:31:08 +0200
mutt (1.13.2-1) unstable; urgency=medium
* New upstream release.
* debian/patches:
+ all patches refreshed.
-- Antonio Radici <antonio@debian.org> Thu, 19 Dec 2019 07:00:56 +0100
mutt (1.13.0-1) unstable; urgency=medium
* New upstream release.
* debian/patches:
+ all patches refreshed.
-- Antonio Radici <antonio@debian.org> Thu, 12 Dec 2019 09:22:41 +0100
mutt (1.12.2-2) unstable; urgency=medium
* debian/control:
+ Standards-Version bumped to 4.4.1, no change required.
+ Added sensible-utils in Recommends due to /etc/Muttrc binaries which
were previously in debianutils.
-- Antonio Radici <antonio@debian.org> Mon, 11 Nov 2019 06:35:33 +0100
mutt (1.12.2-1) unstable; urgency=medium
* New upstream release.
* debian/patches:
+ all patches refreshed.
+ debian-specific/467432-write_bcc.patch slightly modified to fit the new
function calls.
+ removed the following patches that are already upstream:
- upstream/905551-oauthbearer-imap.patch
- upstream/905551-oauthbearer-refresh.patch
- upstream/905551-oauthbearer-smtp.patch
- upstream/929017-atoi-undefined-behavior.patch
* debian/mutt.install: renamed pgpring to mutt_pgpring as per upstream name
change.
-- Antonio Radici <antonio@debian.org> Fri, 25 Oct 2019 08:45:15 +0200
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog mutt`.
Generated by dwww version 1.15 on Sat May 18 08:39:05 CEST 2024.