CVS commit: pkgsrc/mail/dovecot2-pigeonhole

["Takahiro Kambe" <taca%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   taca
Date:           Mon Jun 21 15:34:59 UTC 2021

Modified Files:
        pkgsrc/mail/dovecot2-pigeonhole: Makefile distinfo

Log Message:
mail/dovecot2-pigeonhole: update to 0.5.15

Security release.

v0.5.15 2021-06-21  Aki Tuomi <aki.tuomi%open-xchange.com@localhost>

* CVE-2020-28200: Sieve interpreter is not protected against abusive
  scripts that claim excessive resource usage. Fixed by limiting the
  user CPU time per single script execution and cumulatively over
  several script runs within a configurable timeout period. Sufficiently
  large CPU time usage is summed in the Sieve script binary and execution
  is blocked when the sum exceeds the limit within that time. The block
  is lifted when the script is updated after the resource usage times out.
* Disconnection log messages are now more standardized across services.
  They also always now start with "Disconnected" prefix.
- managesieve: Commands pipelined together with and just after the
  authenticate command cause these commands to be executed twice.


To generate a diff of this commit:
cvs rdiff -u -r1.61 -r1.62 pkgsrc/mail/dovecot2-pigeonhole/Makefile
cvs rdiff -u -r1.46 -r1.47 pkgsrc/mail/dovecot2-pigeonhole/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/mail/dovecot2-pigeonhole/Makefile
diff -u pkgsrc/mail/dovecot2-pigeonhole/Makefile:1.61 pkgsrc/mail/dovecot2-pigeonhole/Makefile:1.62
--- pkgsrc/mail/dovecot2-pigeonhole/Makefile:1.61       Sun Mar  7 08:28:20 2021
+++ pkgsrc/mail/dovecot2-pigeonhole/Makefile    Mon Jun 21 15:34:58 2021
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.61 2021/03/07 08:28:20 taca Exp $
+# $NetBSD: Makefile,v 1.62 2021/06/21 15:34:58 taca Exp $
 
-DISTNAME=      dovecot-2.3-pigeonhole-0.5.14
+DISTNAME=      dovecot-2.3-pigeonhole-0.5.15
 PKGNAME=       ${DISTNAME:S/-2.3-/-/}
 CATEGORIES=    mail
 MASTER_SITES=  https://pigeonhole.dovecot.org/releases/2.3/

Index: pkgsrc/mail/dovecot2-pigeonhole/distinfo
diff -u pkgsrc/mail/dovecot2-pigeonhole/distinfo:1.46 pkgsrc/mail/dovecot2-pigeonhole/distinfo:1.47
--- pkgsrc/mail/dovecot2-pigeonhole/distinfo:1.46       Sun Mar  7 08:28:20 2021
+++ pkgsrc/mail/dovecot2-pigeonhole/distinfo    Mon Jun 21 15:34:58 2021
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.46 2021/03/07 08:28:20 taca Exp $
+$NetBSD: distinfo,v 1.47 2021/06/21 15:34:58 taca Exp $
 
-SHA1 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = 6fc5c5f2f8fb23129b1db08c8316910ee734cf63
-RMD160 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = edb41524e3b83d6cc96e740844bc5fb4ce43dc4d
-SHA512 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = c5d5d309769eabe2c0971646d0c14d166b6b524acf59e1069eca803f764544fa2535c09c9a630ca706aa70442b688ee26af831d29e674823bac7ea7c0e1f33cc
-Size (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = 1910607 bytes
+SHA1 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = fd1b4d0fcdef7ef9170fbc736233de43745235e6
+RMD160 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 04a9ebdbb69ece59d3f0d2815ebfcd41b01a38e8
+SHA512 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 521070080802bf2a50cd0ff0af5dc991c04d70b807abc2cd9aa567444a4869f5f42800f19d9b740a519bd4069437139e70ca6ae4b905479fcec8faa133ac5f54
+Size (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 1935601 bytes
 SHA1 (patch-aa) = 264399e166b5fece22bacd47b043c59f8f0f0a29