fetchmail-devel

[Fetchmail-devel] ANNOUNCE: fetchmail 6.4.38 is available (translation updates, updated OpenSSL/wolfSSL version requirements)

[Matthias A. <mat...@gm...>]

The 6.4.38 release of fetchmail is now available at the usual locations,
including <https://sourceforge.net/projects/fetchmail/files/branch_6.4/>.

The source archive is available at:
<https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.xz/download>
<https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.lz/download>

The detached GnuPG signature is available at:
<https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.xz.asc/download>
<https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.lz.asc/download>

The SHA256 hashes for the tarballs are:
SHA2-256(fetchmail-6.4.38.tar.xz)= a6cb4ea863ac61d242ffb2db564a39123761578d3e40d71ce7b6f2905be609d9
SHA2-256(fetchmail-6.4.38.tar.lz)= be82b520d9698c1378c3a9a4dbab4d392c8c90d457af11a97ce9b85a3fedc70a


Here are the release notes:
--------------------------------------------------------------------------------
fetchmail-6.4.38 (not yet released):

# BREAKING CHANGES:
* Tighten OpenSSL and wolfSSL version requirements again. See README.SSL.
  Distributors providing older versions that they backport security fixes for 
  may want to patch socket.c but remember to redirect support to your 
  distribution's support channels.
  The fetchmail maintainer only supports functionally unmodified builds with 
  publicly available SSL/TLS library versions.
  fetchmail will refuse to build against OpenSSL 1.0.2 older than 1.0.2u,
  or wolfSSL older than 5.6.2. It will warn about OpenSSL older than 3.0.9,
  or between 3.1.0 and 3.1.4, or wolfSSL older than 5.6.6.

# TRANSLATIONS: language translations were updated by these fine people:
(in reverse alphabetical order of language codes):
* ru:    Kirill Isakov [Russian]
* eo:    Keith Bowes [Esperanto]

--------------------------------------------------------------------------------

Re: [Fetchmail-devel] ANNOUNCE: fetchmail 6.4.38 is available (translation updates, updated OpenSSL/wolfSSL version requirements)

[Matthias A. <mat...@gm...>]

Note that the shipped NEWS file in the tarball and this release message 
claim fetchmail-6.4.38 were "not yet released", but I have released iti 
today intentionally, not by accident.

That line should have read instead:

"fetchmail-6.4.38 (released 2024-01-31, 31720 LoC)"

and has been pushed with a GnuPG-signed tag to the Git repos,
https://gitlab.com/fetchmail/fetchmail and 
https://sourceforge.net/p/fetchmail/git/ci/legacy_64/tree/


Am Wed, Jan 31, 2024 at 10:00:33PM +0100 schrieb Matthias Andree:
> The 6.4.38 release of fetchmail is now available at the usual locations,
> including <https://sourceforge.net/projects/fetchmail/files/branch_6.4/>.
> 
> The source archive is available at:
> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.xz/download>
> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.lz/download>
> 
> The detached GnuPG signature is available at:
> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.xz.asc/download>
> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.38.tar.lz.asc/download>
> 
> The SHA256 hashes for the tarballs are:
> SHA2-256(fetchmail-6.4.38.tar.xz)= a6cb4ea863ac61d242ffb2db564a39123761578d3e40d71ce7b6f2905be609d9
> SHA2-256(fetchmail-6.4.38.tar.lz)= be82b520d9698c1378c3a9a4dbab4d392c8c90d457af11a97ce9b85a3fedc70a
> 
> 
> Here are the release notes:
> --------------------------------------------------------------------------------
> fetchmail-6.4.38 (not yet released):
> 
> # BREAKING CHANGES:
> * Tighten OpenSSL and wolfSSL version requirements again. See README.SSL.
>   Distributors providing older versions that they backport security fixes for 
>   may want to patch socket.c but remember to redirect support to your 
>   distribution's support channels.
>   The fetchmail maintainer only supports functionally unmodified builds with 
>   publicly available SSL/TLS library versions.
>   fetchmail will refuse to build against OpenSSL 1.0.2 older than 1.0.2u,
>   or wolfSSL older than 5.6.2. It will warn about OpenSSL older than 3.0.9,
>   or between 3.1.0 and 3.1.4, or wolfSSL older than 5.6.6.
> 
> # TRANSLATIONS: language translations were updated by these fine people:
> (in reverse alphabetical order of language codes):
> * ru:    Kirill Isakov [Russian]
> * eo:    Keith Bowes [Esperanto]
> 
> --------------------------------------------------------------------------------