Skip to content

Changelog dovecot (1:2.3.7.2-1ubuntu3.2+9.0trisquel1)

2020

dovecot (1:2.3.7.2-1ubuntu3.2+9.0trisquel1) etiona-backports; urgency=medium

   * Backported from focal

dovecot (1:2.3.7.2-1ubuntu3.2) focal-security; urgency=medium

   * SECURITY UPDATE: DoS via deeply nested MIME parts
     - debian/patches/CVE-2020-12100/*.patch: backports of upstream patches
       to fix the issue.
     - CVE-2020-12100
   * SECURITY UPDATE: DoS via incorrect NTLM message buffer size
     - debian/patches/CVE-2020-12673/*.patch: check buffer length in
       src/lib-ntlm/ntlm-message.c.
     - CVE-2020-12673
   * SECURITY UPDATE: DoS via zero-length message
     - debian/patches/CVE-2020-12674/*.patch: fail on zero-length buffer in
       src/auth/mech-rpa.c.
     - CVE-2020-12674

dovecot (1:2.3.7.2-1ubuntu3.1) focal-security; urgency=medium

   * SECURITY UPDATE: Multiple security issues
     - debian/patches/CVE-2020-109xx/*.patch: add patches provided by
       upstream to fix issues.
     - CVE-2020-10957
     - CVE-2020-10958
     - CVE-2020-10967

dovecot (1:2.3.7.2-1ubuntu3) focal; urgency=medium

   * No-change rebuild for icu soname change.

dovecot (1:2.3.7.2-1ubuntu2) focal; urgency=medium

   * No-change rebuild for icu soname change.

2019

dovecot (1:2.3.7.2-1ubuntu1) focal; urgency=medium

   * Merge with Debian unstable. Remaining changes:
     - carry mail-stack-delivery as empty transitional package
   * Dropped:
     - SECURITY UPDATE: The IMAP protocol parser does not properly handled
       the NUL byte when scanning data in quoted strings, leading to out of
       bounds heap memory writes.
       + debian/patches/CVE-2019-11500-*.patch: doesn't accept strings with
         NULs in src/lib-imap/imap-parser.c and
         pigeonhole/src/lib-managesieve/managesieve-parser.c,
         make sure str_unescape won't be writing past allocated memory
         in src/lib-imap/imap-parser.c and
         pieonhole/src/lig-managesieve/managesieve-parser.c.
       + CVE-2019-11500
       [Now in upstream for 1:2.3.7.2-1]

dovecot (1:2.3.7.2-1) unstable; urgency=medium

   * [dcaf24e] New upstream version 2.3.7.2
     - Fixes CVE-2019-11500 for dovecot-core
   * [111beef] Update pigeonhole to 0.5.7.2
     - Fixes CVE-2019-11500 for pigeonhole/managesieve
   * [a422c4c] Bump Standards-Version to 4.4.0; no changes needed
   * [56e37ed] Bump dh compat to 12; no changes needed.
     - Drop d/compat in favor debhelper-compat B-D.
   * [476edbd] Refresh dovecot_name.patch and ssl-cert-location.patch
   * [9dc7904] Drop patches included in 2.3.7.2.
      - CVE-2019-10691
      - CVE-2019-11494
      - CVE-2019-11499
      - CVE-2019-7524
      - avoid-double-closing-mysql.patch
      - lib-master-test-event-stats-Use-PRIu64-format.patch

dovecot (1:2.3.4.1-5ubuntu3) eoan; urgency=medium

   * SECURITY UPDATE: The IMAP protocol parser does not properly handled
     the NUL byte when scanning data in quoted strings, leading to out of
     bounds heap memory writes.
     - debian/patches/CVE-2019-11500-*.patch: doesn't accept strings with
       NULs in src/lib-imap/imap-parser.c and
       pigeonhole/src/lib-managesieve/managesieve-parser.c,
       make sure str_unescape won't be writing past allocated memory
       in src/lib-imap/imap-parser.c and
       pieonhole/src/lig-managesieve/managesieve-parser.c.
     - CVE-2019-11500

dovecot (1:2.3.4.1-5ubuntu2) eoan; urgency=medium

   * No change rebuild for libmysqlclient21.

dovecot (1:2.3.4.1-5ubuntu1) eoan; urgency=medium

   * Merge with Debian unstable. Remaining changes:
     - carry mail-stack-delivery as empty transitional package
   * Dropped:
     - SECURITY UPDATE: stack overflow when reading FTS or POP3-UIDL header
       + debian/patches/CVE-2019-7524-1.patch: fix buffer overflow when
         reading oversized hdr-pop3-uidl header in
         src/lib-storage/index/index-pop3-uidl.c.
       + debian/patches/CVE-2019-7524-2.patch: fix buffer overflow when
         reading oversized fts header in src/plugins/fts/fts-api.c.
       + CVE-2019-7524
       [Fixed in 1:2.3.4.1-3]
     - SECURITY UPDATE: JSON encoder assert DoS
       + debian/patches/CVE-2019-10691.patch: escape invalid UTF-8 as unicode
         bytes in src/lib/json-parser.c, src/lib/test-json-parser.c.
       + CVE-2019-10691
       [Fixed in 1:2.3.4.1-4]
     - SECURITY UPDATE: submission-login denial of service issues
       + debian/patches/CVE-2019-1149x-1.patch: remove unused
         client->pending_starttls in src/submission-login/client.h.
       + debian/patches/CVE-2019-1149x-2.patch: fix crash occurring when
         client disconnects during authentication in
         src/submission-login/client-authenticate.c,
         src/submission-login/client.c.
       + debian/patches/CVE-2019-1149x-3.patch: fix AUTH response error
         handling so that it stops reading more input in
         src/lib-smtp/smtp-server-cmd-auth.c.
       + CVE-2019-11494
       + CVE-2019-11499
       [Fixed in 1:2.3.4.1-5]

dovecot (1:2.3.4.1-5) unstable; urgency=medium

   * [bd00402] Fix CVE-2019-11494 and CVE-2019-11499 (Closes: #928235)
      - submission-login: fix null pointer dereference when client
        disconnects during authentication (CVE-2019-11494)
      - submission-login: fix assert-crash when receiving an invalid
        authentication message over TLS (CVE-2019-11499)

dovecot (1:2.3.4.1-4) unstable; urgency=high

   * [d04d4ba] Fix assert-crash in JSON encoder (CVE-2019-10691)

dovecot (1:2.3.4.1-3) unstable; urgency=high

   * [07c9212] Fix two buffer overflows when reading oversized FTS headers
     and/or oversized POP3-UIDL headers (CVE-2019-7524).

dovecot (1:2.3.4.1-2) unstable; urgency=medium

   [ Laurent Bigonville ]
   * [ac99918] Fix double-free crash in mysql driver
     Fix double closing of the connection in the mysql driver, this should
     fix the crash in the dovecot auth process, taken from upstream.
     (Closes: #918339)
 
   [ Apollon Oikonomopoulos ]
   * [8a30446] Bump Standards-Version to 4.3.0; no changes needed

dovecot (1:2.3.4.1-1ubuntu3) eoan; urgency=medium

   * SECURITY UPDATE: submission-login denial of service issues
     - debian/patches/CVE-2019-1149x-1.patch: remove unused
       client->pending_starttls in src/submission-login/client.h.
     - debian/patches/CVE-2019-1149x-2.patch: fix crash occurring when
       client disconnects during authentication in
       src/submission-login/client-authenticate.c,
       src/submission-login/client.c.
     - debian/patches/CVE-2019-1149x-3.patch: fix AUTH response error
       handling so that it stops reading more input in
       src/lib-smtp/smtp-server-cmd-auth.c.
     - CVE-2019-11494
     - CVE-2019-11499

dovecot (1:2.3.4.1-1ubuntu2.1) disco-security; urgency=medium

   * SECURITY UPDATE: JSON encoder assert DoS
     - debian/patches/CVE-2019-10691.patch: escape invalid UTF-8 as unicode
       bytes in src/lib/json-parser.c, src/lib/test-json-parser.c.
     - CVE-2019-10691

dovecot (1:2.3.4.1-1ubuntu2) disco; urgency=medium

   * SECURITY UPDATE: stack overflow when reading FTS or POP3-UIDL header
     - debian/patches/CVE-2019-7524-1.patch: fix buffer overflow when
       reading oversized hdr-pop3-uidl header in
       src/lib-storage/index/index-pop3-uidl.c.
     - debian/patches/CVE-2019-7524-2.patch: fix buffer overflow when
       reading oversized fts header in src/plugins/fts/fts-api.c.
     - CVE-2019-7524

dovecot (1:2.3.4.1-1ubuntu1) disco; urgency=medium

   * Merge with Debian unstable (LP: #1815035). Remaining changes:
     - carry mail-stack-delivery as empty transitional package

dovecot (1:2.3.4.1-1) unstable; urgency=high

   * [bebf0b4] New upstream version 2.3.4.1
     + Fixes CVE-2019-3814: TLS client auth username handling

dovecot (1:2.3.4-2ubuntu2) disco; urgency=medium

   * No-change rebuild against libmysqlclient21

dovecot (1:2.3.4-2ubuntu1) disco; urgency=medium

   * Merge with Debian unstable (LP: #1812012). Remaining changes:
     - carry mail-stack-delivery as empty transitional package
   * Dropped Changes:
     - d/p/fix-glibc-crypt-ftbfs: cherry-pick from upstream to find crypt(3)
       correctly to fix FTBFS
       [Fixed in 1:2.3.4-2]

2018

dovecot (1:2.3.4-2) unstable; urgency=medium

   * [51d1317] Fix FTBFS on 32-bit platforms.
     Cherry-pick upstream commit de42b54, fixing the event-stats test on
     32-bit platforms.

dovecot (1:2.3.4-1) unstable; urgency=medium

   * [14c247f] New upstream version 2.3.4
   * [7fed004] Update pigeonhole to 0.5.4

dovecot (1:2.3.3-1ubuntu1) disco; urgency=medium

   * Merge with Debian unstable (LP: #1803296). Remaining changes:
     - d/control: carry mail-stack-delivery as empty transitional package
     - d/p/fix-glibc-crypt-ftbfs: cherry-pick from upstream to find crypt(3)
       correctly to fix FTBFS (LP: 1793138).

dovecot (1:2.3.3-1) unstable; urgency=medium

   [ Jelmer Vernooij ]
   * Trim trailing whitespace.
 
   [ Apollon Oikonomopoulos ]
   * [6591a99] New upstream version 2.3.3
   * [3d718ec] Bump Standards-Version to 4.2.1; no changes needed
   * [123bd32] Update pigeonhole to 0.5.3

dovecot (1:2.3.2.1-1ubuntu3) cosmic; urgency=high

   * No change rebuild against openssl 1.1.1 with TLS 1.3 support.

dovecot (1:2.3.2.1-1ubuntu2) cosmic; urgency=medium

   * d/p/fix-glibc-crypt-ftbfs: cherry-pick from upstream to find crypt(3)
     correctly to fix FTBFS (LP: #1793138).

dovecot (1:2.3.2.1-1ubuntu1) cosmic; urgency=medium

   * Merge with Debian unstable (LP: #1771524). Remaining changes:
     - carry mail-stack-delivery as empty transitional package
       (can be dropped >20.04)
   * Dropped Changes
     - Add updated autopkgtest to debian/tests/* (LP: 1638865)
       (those becamce superfluous by being mostly identical to the tests in
        debian/tests/usage that are now packaged by Debian.)

dovecot (1:2.3.2.1-1) unstable; urgency=medium

   * [40ba9f0] New upstream bugfix release 2.3.2.1
   * [87045ac] Drop fix-ftbfs-on-32bit.patch; merged upstream
   * [5bb22a4] Bump Standards-Version to 4.1.5; no changes needed

dovecot (1:2.3.2-2) unstable; urgency=medium

   * [48067de] Fix FTBFS on 32-bit platforms by cherry-picking upstream commit
     1e23986f.

dovecot (1:2.3.2-1) unstable; urgency=medium

   * [bb03669] New upstream version 2.3.2
     + Upload to unstable
   * [d29da3a] Merge 2.3 package changes from experimental. Important changes:
     + [b3d1e17] Enable AppArmor support, see
       https://wiki2.dovecot.org/Plugins/Apparmor
       • B-D on libapparmor-dev
     + [c0c55bd] Enable Lua scripting support for authdb/passdb.
       • B-D on liblua5.3-dev
       • New binary package, dovecot-auth-lua
     + [4f6792e] Build with sodium support, enabling the ARGON2I and ARGON2ID
       password schemes.
       • B-D on libsodium-dev
     + [54347e7] Build with ICU support enabling FTS unicode normalization
       • B-D on libicu-dev
     + New dovecot-submissiond binary package for the dovecot submission agent;
       see https://wiki2.dovecot.org/Submission.
   * [4db4813] Change maintainer address to dovecot@packages.d.o
   * [5118354] Update pigeonhole to 0.5.2
   * [52a7af4] Drop murmur3-big-endian.patch; merged upstream
   * [22a6eee] Refresh dovecot_name.patch
   * [3af7568] dovecot_name.patch: apply to submissiond as well

dovecot (1:2.2.36-1) unstable; urgency=medium

   * [19f2274] d/gbp.conf: set merge-mode to "merge" to preserve pigeonhole/
     when importing new dovecot sources
   * [6b9bf0d] New upstream version 2.2.36
   * [be12f22] Bump pigeonhole version to 0.4.24
     + Remove new file under doc/rfc
     + Ship the new imap_filter_sieve module in dovecot-sieve
   * [b77be59] Bump Standards-Version to 4.1.4; no changes needed

dovecot (1:2.2.35-2ubuntu1) cosmic; urgency=medium

   * Merge with Debian unstable (LP: #1771816). Remaining changes:
     - Add updated autopkgtest to debian/tests/* (these tests got simplified
       and streamlined to use the packages default configuration which solves
       LP: #1638865)
   * Dropped Changes (now upstream)
     - SECURITY UPDATE: rfc822_parse_domain Information Leak Vulnerability
     - SECURITY UPDATE: TLS SNI config lookups DoS
     - SECURITY UPDATE: Memory leak that can cause crash due to memory exhaustion
   * Dropped Changes (no more needed after 18.04)
     - handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart).
   * Dropped Changes (no more needed)
     - Drop build dependency on libstemmer-dev (universe) - this is now in main
     - Disable dovecot-lucene plugin as it had various issues and is deprecated
       in favor of solr anyway (LP 1524526) - no more failing in Cosmic.
   * Dropped Changes (mail-stack-delivery)
     It was decided to no more carry mail-stack-delivery as a package in favor
     to out-of-package solutions. It became less useful due to one of the
     biggest benefit (auto-ssl setup) being part of the base setup now.
     - Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.README.Debian clarified use of configuration files
     - d/mail-stack-delivery.postinst: Use ssl key/cert paths now set up by
       dovecot-core; transition for such configs formerly set up by
       mail-stack-delivery to use the new default ssl config (if user had no
       conffile change or choses new defaults).
     - d/mail-stack-delivery.postinst: if moving dovecot to the new defaults on
       upgrade, also move the related postfix key/cert entries.
     - debian/99-mail-stack-delivery.conf: do not explicitly enable protocols
       as all installed are auto-included from the base config now.
     - adapt autopkgtests to match new version.
     - d/control: for the ssl transition to work we need to ensure dovecot-core
       is complete before upgrading mail-stack-delivery, so add a Pre-Depends.
     - d/mail-stack-delivery.postinst: add SSL_CERT/SSL_KEY detection to
       postconf section (was formerly initialized at the now dropped key setup)
     - d/mail-stack-delivery.postinst: fix SSL_CERT/SSL_KEY detection to only
       read non-comments from the right keywords and to strip common bad-chars
     - d/mail-stack-delivery.postinst: stop modifying mandatory tls config,
       recent upstream has sane defaults now
     - debian/99-mail-stack-delivery.conf: drop explicit ssl_cipher_list,
       recent upstream has sane defaults now
   * Added Changes:
     - carry mail-stack-delivery as empty transitional package
       (can be dropped >20.04)

dovecot (1:2.2.35-2) unstable; urgency=medium

   * [7665652] Use git-subtree to generate pigeonhole patch from git; add
     single-debian-patch to d/source/local-options
   * [bfa0f10] d/rules: specify libdir manually; previous upload moved modules
     under /usr/lib/<triplet>, which was bound to break existing setups
   * [982e826] d/copyright: adjust pigeonhole path and bump years

dovecot (1:2.2.35-1) unstable; urgency=medium

   * [8108cba] New upstream version 2.2.35
   * [6cbbaa1] Update pigeonhole to 0.4.23 (Closes: #892137)
   * [9ace5f2] Switch Vcs-* URLs to salsa.d.o
   * [ef40625] d/rules: call configure via dh_auto_configure.
     Thanks to Helmut Grohne (Closes: #885854)
   * [a459455] Drop B-D on libcurl4-gnutls-dev; removed upstream since 2.2
   * [235af9d] Update upstream signing key

dovecot (1:2.2.34-2) unstable; urgency=high

   * [868dc65] Update pigeonhole to 0.4.22
   * Set urgency to high due to the security fixes in 2.2.34-1

dovecot (1:2.2.34-1) unstable; urgency=medium

   * [f53dc9a] New upstream version 2.2.34
     Fixes the following security issues:
      + CVE-2017-15130: TLS SNI config lookups may lead to excessive memory
        usage (Closes: #891820)
      + CVE-2017-14461: rfc822_parse_domain information leak vulnerability
        (Closes: #891819)
      + CVE-2017-15132: auth client leaks memory if SASL authentication is
        aborted (Closes: #888432)
   * [0dc98c6] Do not patch all-settings.c; regenerate it at build time
     instead. Thanks to Aki Tuomi!
   * [e678e3b] Bump dh compat to 11
      + B-D on debhelper (>= 11~)
      + Use dh_installsystemd instead of dh_systemd_enable
   * [271b290] Bump Standards-Version to 4.1.3; no changes needed
   * [3cd6715] d/copyright: bump upstream and debian years
   * [380d1ac] Drop the ENABLED flag from /etc/default/dovecot (but let the
     initscript handle it if it exists)
   * [97d6fae] d/watch: switch upstream URL to https://

dovecot (1:2.2.33.2-1ubuntu4) bionic; urgency=medium

   * SECURITY UPDATE: rfc822_parse_domain Information Leak Vulnerability
     - debian/patches/CVE-2017-14461/*.patch: upstream parsing fixes.
     - CVE-2017-14461
   * SECURITY UPDATE: TLS SNI config lookups DoS
     - debian/patches/CVE-2017-15130/*.patch: upstream config filtering fix.
     - CVE-2017-15130

dovecot (1:2.2.33.2-1ubuntu3) bionic; urgency=medium

   * SECURITY UPDATE: Memory leak that can cause crash due to memory exhaustion
     - debian/patches/CVE-2017-15132.patch: fix memory leak in
       auth_client_request_abort() in src/lib-auth/auth-client-request.c.
     - debian/patches/CVE-2017-15132-additional.patch: remove request after
       abort in src/lib-auth/auth-client-request.c,
       src/lib-auth/auth-server-connection.c,
       src/lib-auth/auth-serser-connection.h.
     - CVE-2017-15132

dovecot (1:2.2.33.2-1ubuntu2) bionic; urgency=high

   * No change rebuild against openssl1.1.

2017

dovecot (1:2.2.33.2-1ubuntu1) bionic; urgency=medium

   * Merge with Debian unstable. Remaining changes:
     - Add updated autopkgtest to debian/tests/*.
     - Drop build dependency on libstemmer-dev (universe)
     - Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.README.Debian clarified use of configuration files
     - handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart). Can be removed once no upgrade path from <yakkety is left.
     - Disable dovecot-lucene plugin as it had various issues and is deprecated
       in favor of solr anyway (LP 1524526).
   * Dropped changes (in Debian):
     - Use Snakeoil SSL certificates by default
       - d/control: Depend on ssl-cert
   * Added changes:
     - d/mail-stack-delivery.postinst: Use ssl key/cert paths now set up by
       dovecot-core; transition for such configs formerly set up by
       mail-stack-delivery to use the new default ssl config (if user had no
       conffile change or choses new defaults).
     - d/mail-stack-delivery.postinst: if moving dovecot to the new defaults on
       upgrade, also move the related postfix key/cert entries.
     - debian/99-mail-stack-delivery.conf: do not explicitly enable protocols
       as all installed are auto-included from the base config now.
     - adapt autopkgtests to match new version.
     - d/control: for the ssl transition to work we need to ensure dovecot-core
       is complete before upgrading mail-stack-delivery, so add a Pre-Depends.
     - d/mail-stack-delivery.postinst: add SSL_CERT/SSL_KEY detection to
       postconf section (was formerly initialized at the now dropped key setup)
     - d/mail-stack-delivery.postinst: fix SSL_CERT/SSL_KEY detection to only
       read non-comments from the right keywords and to strip common bad-chars
     - d/mail-stack-delivery.postinst: stop modifying mandatory tls config,
       recent upstream has sane defaults now
     - debian/99-mail-stack-delivery.conf: drop explicit ssl_cipher_list,
       recent upstream has sane defaults now

dovecot (1:2.2.33.2-1) unstable; urgency=medium

   * [8216f38] New upstream version 2.2.33.2

dovecot (1:2.2.33.1-1) unstable; urgency=medium

   * [dbd1132] New upstream version 2.2.33.1
     + [b3d1f2d] Refresh split-protocols.patch
     + [e0de123] Update pigeonhole to 0.4.21
   * [ef6a1eb] Set mail_privileged_group to 'mail' by default (Closes: #711856)
   * [aeb6cf3] d/copyright: convert to Format 1.0
   * [5961f9d] Use dh-autoreconf for both, dovecot and pigeonhole.
   * [85f1f0f] Bump Standards to 4.1.1; no changes needed

dovecot (1:2.2.32-2) unstable; urgency=medium

   * [fa71c69] dovecot-core.postinst: remove dovecot-common's postrm
     (Closes: #696382)
   * [e835c67] Ship decode2text.sh as an example (Closes: #767313)
   * [63fb486] Deprecate dovecot-dbg in favor of auto dbgsyms
   * [36b44b9] Handle unsupported SSLv2/SSLv3 in the ssl_protocols setting
     gracefully (Closes: #866752)

dovecot (1:2.2.32-1) unstable; urgency=medium

   * [6652d9c] New upstream version 2.2.32.
   * [c9cb096] Update pigeonhole to 0.4.20.
   * [b499950] dovecot-core: remove SSL key/cert symlinks on purge
     (Closes: #867157)
   * [dbdcc66] dovecot-core.postinst: ignore adduser errors (Closes: #867849)
   * [476c950] Bump Standards to 4.1.0; no changes needed.
   * [2914efa] Drop B-D on autotools-dev, it is depended on by debhelper 10.
   * [305d022] Remove Fabio, Joel and Marco from Uploaders. Thanks for your work!

dovecot (1:2.2.31-1) unstable; urgency=medium

   * [9b058f3] New upstream version 2.2.31
     + [2b577c1] Bump pigeonhole version to 0.4.19
   * Enable TLS by default:
     + [7ca4b1c] Update SSL cert location patch; cert/key should reside under
       /etc/dovecot/private by default.
     + [05d3d0f] Use ssl-cert-snakeoil certificates to setup SSL by default
       (Closes: #376146, #786570)
     + [862901f] dovecot-core.postinst: manage 10-ssl.conf using ucf
       (Closes: #850538)
     + [418df05] README.Debian: document the new TLS setup
     + [47bade9] dovecot-core.NEWS: document TLS support
   * [8356bc0] Handle /etc/dovecot/private mode using dpkg-statoverride
   * dovecot-core.postinst: cleanup
     + [afbd33f] dovecot-core.postinst: always call adduser
     + [ee22dc5] dovecot-core.postinst: remove obsolete conffile handling
     + [7bb298b] dovecot-core.postinst: do not remove the imapd user/group
   * [815a2d1] README.Debian: cleanup
   * [91115a3] Use noawait dpkg triggers (lintian warning)
   * [e845cec] Add basic usage DEP-8 test, doing end-to-end tests involving
     LDA, IMAP and POP3.
   * [71c73ef] systemd: convert service to Type=simple and start after
     network-online.target (Closes: #865546, #825562)
   * [1534fac] dovecot.service: enable ProtectSystem=full
   * [d276c69] B-D only on default-libmysqlclient-dev

dovecot (1:2.2.30.2-1) unstable; urgency=medium

   * [401e83d] New upstream version 2.2.30.2
   * [1ea8321] Bump pigeonhole version to 0.4.18
   * [97bf8ec] Drop CVE-2017-2669 patch
   * [9c1bbe2] Drop fix-sha3-on-big-endian.patch
   * [d3c607b] Refresh dovecot_name.patch
   * [5c64268] Bump Standards to 4.0.0; no changes needed
   * [0b884fc] Bump compat to 10
     + B-D on debhelper (>= 10)
     + Drop B-D on dh-systemd, now provided by debhelper
     + Run dh --without=autoreconf, since we use autotools-dev

dovecot (1:2.2.27-3ubuntu1) artful; urgency=medium

   * Merge with Debian; Remaining Changes:
     + Add updated autopkgtest to debian/tests/*.
     + Drop build dependency on libstemmer-dev (universe)
     + Use Snakeoil SSL certificates by default
       - d/control: Depend on ssl-cert
     + Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.README.Debian clarified use of configuration files
     + Disable dovecot-lucene plugin as it had various issues, has universe
       dependencies and is deprecated in favor of solr anyway.
     + handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart). Can be removed once no upgrade path from <yakkety is left.
   * Dropped changes:
     - SECURITY UPDATE (CVE-2017-2669): DoS via crafted username (is in Debian)

dovecot (1:2.2.27-3) unstable; urgency=high

   * [117285a] Remove /etc/dovecot/README (Closes: #849290)
   * [04e8ce3] auth: Do not double-expand key in passdb dict when
     authenticating (CVE-2017-2669) (Closes: #860049)

dovecot (1:2.2.27-2ubuntu2) zesty; urgency=medium

   * SECURITY UPDATE: DoS via crafted username
     - debian/patches/CVE-2017-2669.patch: do not double-expand key in
       passdb dict when authenticating in src/auth/db-dict.c.
     - CVE-2017-2669

dovecot (1:2.2.27-2ubuntu1) zesty; urgency=medium

   * Merge with Debian; Remaining Changes:
     + Add updated autopkgtest to debian/tests/*.
     + Drop build dependency on libstemmer-dev (universe)
     + Use Snakeoil SSL certificates by default
       - d/control: Depend on ssl-cert
     + Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.README.Debian clarified use of configuration files
     + Disable dovecot-lucene plugin as it had various issues, has universe
       dependencies and is deprecated in favor of solr anyway.
     + handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart). Can be removed once no upgrade path from <yakkety is left.
   * Dropped changes:
     + Fix FTBFS of dovecot 2.2.25 in Ubuntu due to being incompatible with
       -Bsymbolic-functions linker flag (in Debian).

2016

dovecot (1:2.2.27-2) unstable; urgency=medium

   * [30586e3] Fix SHA3 on big-endian architectures.

dovecot (1:2.2.27-1) unstable; urgency=medium

   [ Jaldhar H. Vyas ]
   * [b1e4693] Imported Upstream version 2.2.27
     + Includes fix for CVE-2016-8652 (Closes: #846605)
 
   [ Apollon Oikonomopoulos ]
   * [b25993a] Drop patches merged upstream:
     + call_openssl_cleanup_at_deinit.patch
     + disable_sslv23.patch

dovecot (1:2.2.26.0-4) unstable; urgency=medium

   * [3015f35] Drop references to SSLv2 in the default SSL protocols (Closes: #844271)

dovecot (1:2.2.26.0-3) unstable; urgency=medium

   * [b03027b] Call OPENSSL_cleanup() on dcrypt_openssl unload. Fixes FTBFS
     with OpenSSL 1.1.0c.

dovecot (1:2.2.26.0-2) unstable; urgency=medium

   * [9db7d1b] Fix upgrades from 2.2.25 (Closes: #843028)

dovecot (1:2.2.26.0-1) unstable; urgency=medium

   [ Apollon Oikonomopoulos ]
   * [18fc181] New upstream version 2.2.26.0 (Closes: #828286, #834837)
   * [3ecfd3c] Update pigeonhole to 0.4.16
   * [61ff825] Move libdovecot-ldap and libdict_ldap to dovecot-ldap (Closes:
     #830135).
   * [b3a1650] Ubuntu: disable -Bsymbolic-functions ld flag.
     Thanks to Christian Ehrhardt <christian.ehrhardt@canonical.com>
     (Closes: #842151) (LP: #1636781)
   * [5828ab1] B-D on default-libmysqlclient-dev (but keep plain
     libmysqlclient-dev as an alternative to ease backports).
   * [0086110] Drop DRAC plugin.
     Thanks to Christian Ehrhardt <christian.ehrhardt@canonical.com>
     (Closes: #842153)
 
   [ Jaldhar H. Vyas ]
   * [60808eb] Move aclocal *.m4 files into -dev package.
   * [52fd869] Move lib95_imap_sieve_plugin.so into dovecot-sieve (Closes:
     #832046).

dovecot (1:2.2.25-1ubuntu2) zesty; urgency=medium

   * Update "general" dep8 test with various cleanups, bugfixes and conversion
     to Python 3. Since it now uses the "service" wrapper, the test must
     additionally depend on init-system-helpers.

dovecot (1:2.2.25-1ubuntu1) zesty; urgency=medium

   * Merge with Debian (LP: #1633220); Remaining Changes:
     + Add updated autopkgtest to debian/tests/*.
     + Drop build dependency on libstemmer-dev (universe)
     + Use Snakeoil SSL certificates by default
       - d/control: Depend on ssl-cert
     + Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.README.Debian clarified use of configuration files
     + Disable dovecot-lucene plugin as it had various issues, has universe
       dependencies and is deprecated in favor of solr anyway.
     + handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart). Can be removed once no upgrade path from <yakkety is left.
   * Added changes:
     + Fix FTBFS of dovecot 2.2.25 in Ubuntu due to being incompatible with
       -Bsymbolic-functions linker flag (LP: #1636781).
   * Dropped Changes as they got accepted in Debian:
     + add lsb base dependency to ensure debian/dovecot-core.dovecot.init is
       working correctly
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Remove lintian override for drac

dovecot (1:2.2.25-1) unstable; urgency=medium

   * [cc29a81] Imported Upstream version 2.2.25
   * [d19bcca] Updated pigeonhole patch to 0.4.14
   * [16db179] Merged in some features of the Ubuntu dovecot package.
     + dovecot-core: added lsb-base dependency.
     + dovecot-core: Added apport hook.
     + dovecot-imapd,dovecot-pop3d: Added ufw profiles.
     Thanks to Christian Erhardt <christian.ehrhardt@canonical.com>
     (Closes: #828864)

dovecot (1:2.2.24-1ubuntu1) yakkety; urgency=medium

   * Merge with Debian; Remaining Changes:
     + Add autopkgtest to debian/tests/*.
     + Drop build dependency on libstemmer-dev (universe)
     + Use Snakeoil SSL certificates by default
       - d/control: Depend on ssl-cert
     + add lsb base dependency to ensure debian/dovecot-core.dovecot.init is
       working correctly
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Remove lintian override for drac
     + Add mail-stack-delivery
       - add package in d/rules, d/control
       - add d/mail-stack-delivery maintainer scripts and default conf
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
   * Added Changes:
     - Disable dovecot-lucene plugin as it had various issues, has universe
       dependencies and is deprecated in favor of solr anyway (LP: #1524526).
     - Fixup the autopkgtests we add to work with recent dovecot versions
     - d/mail-stack-delivery.README.Debian clarified use of configuration files
     - handle conffile removal of /etc/init/dovecot.conf (due to dropping
       upstart). Can be removed once no upgrade path from <yakkety is left.
   * Dropped Changes:
     - Add upstart job (that means we no more add it now)
     - no more needed upgrade handling of mail-stack-delivery related to
       2.1.7-7 and 1.2.9-1ubuntu8 (both out of scope of any possible
       paths now)
     - d/dovecot-core.dirs: Added usr/share/doc/dovecot-core (was only left
       in changelog)
     - ntpdate Recommends (was missing in former Changelog, now superseded
       by timesyncd which is available by default)
     - adding of d/docs for dh_installdocs

dovecot (1:2.2.24-1) unstable; urgency=medium

   * [26020b6] Imported Upstream version 2.2.24 (Closes: #818652)

dovecot (1:2.2.23-1) unstable; urgency=medium

   [ Jaldhar H. Vyas ]
   * Drop missing-expunges.patch, merged upstream
 
   [ Apollon Oikonomopoulos ]
   * [8a01915] Imported Upstream version 2.2.23

dovecot (1:2.2.22-1ubuntu4) xenial; urgency=medium

   * Urgh. Previous upload added a runtime dependency on libstemmer0d to
     dovecot-core that I missed. Revert it, and reopen LP: 1524526.

dovecot (1:2.2.22-1ubuntu3) xenial; urgency=medium

   * Re-add build dependency on libstemmer-dev
     - In universe, but only adds runtime dependencies to packages already in
       universe.
     - Fixes crash with missing symbol when enabling fts-lucene plugin
       (LP: #1524526)

dovecot (1:2.2.22-1ubuntu2) xenial; urgency=medium

   * Rebuild against libmysqlclient20.

dovecot (1:2.2.22-1ubuntu1) xenial; urgency=medium

   * Merge with Debian; remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst: Convert init script to upstart.
     + d/control: Drop dovecot-postfix package as its no longer required.
     + Drop build dependency on libstemmer-dev (universe).

dovecot (1:2.2.22-1) unstable; urgency=medium

   [ Jaldhar H. Vyas ]
   * [2321581] Imported Upstream version 2.2.22
   * [3fa8a62] Updated pigeonhole patch to 0.4.13

dovecot (1:2.2.21-1) unstable; urgency=medium

   [ Jaldhar H. Vyas ]
   * [d9c0630] Imported Upstream version 2.2.21 (Closes: #809666, #708539,
     #801346, 803223)
   * [5360548] Updated pigeonhole patch to 0.4.12
   * [5e6783f] Fixed typo in dovecot-core.README.Debian.
     Thanks to Ingo Wichmann <iw-debian@linuxhotel.de> (Closes: #809717)
   * [d00d0c7] Create /var/lib/dovecot in the package. (Closes: #801752)
   * [6510373] Upstream patch for sync problem which could cause expunged
     messages to keep reappearing. (Closes: #684499)
   * [040f7fa] dovecot-core: dovecot.socket not enabled on installation
     (Closes: #814999)
   * [fc29003] /etc/dovecot/10-ssl.conf no longer managed by ucf or modified by
     postinst. Thanks to Santiago Vila <sanvila@unex.es> (Closes: #773237)
   * [0d16e16] Fixed some lintian warnings.
   * [801ba7e] Added Apollon to uploaders
 
   [ Apollon Oikonomopoulos ]
   * [99ef3d8] Build with lz4 support (Closes: #784321)
   * [92f68aa] Fix nss userdb (Closes: #712764)
   * [41b9bde] Disable dovecot.socket in existing installations.
   * [49c5b97] d/rules: specify systemd unit dir manually (Closes: #720854)
   * [a377ccb] Convert to dh sequencer
   * [48af954] B-D on debhelper >= 9
   * [591c315] Bump standards to 3.9.7; no changes needed
   * [ceb629e] Use dh_installinit --name
   * [ef8d8ac] d/rules: refactor file installation
   * [a899bcc] dovecot-core: use dh_installman
   * [6159e00] d/rules: build in parallel if requested
   * [51014e6] d/control: use HTTPS Vcs-* URLs
   * [b385cf5] dovecot-sieve: replace Conflicts with Breaks
   * [b4a9e68] Add basic DEP-8 tests
   * [7452649] Add DEP-8 tests for systemd support
   * [e5101aa] Re-enable PIE and bindnow
   * [5717808] Fix invoke-rc.d calls and never call init.d directly
   * [3504241] Drop debconf remains

2015

dovecot (1:2.2.20-1) UNRELEASED; urgency=medium

   * [68d5038] Imported Upstream version 2.2.20

dovecot (1:2.2.19-1) UNRELEASED; urgency=medium

   * [146ef57] Imported Upstream version 2.2.19
   * [3af7cad] Updated pigeonhole patch to 0.4.9

dovecot (1:2.2.18-2ubuntu2) wily; urgency=medium

   * Merge with Debian (after 552 days); remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst: Convert init script to upstart.
     + d/control: Drop dovecot-postfix package as its no longer required.
     + Rename init.d script to work with the dh_installinit --name option, so
       that it comes back.
   * Drop build dependency on libstemmer-dev (universe).

dovecot (1:2.2.18-2) unstable; urgency=high

   * [3f3bf71] Updated pigeonhole patch to 0.4.8 (Closes: #792669)

dovecot (1:2.2.18-1) unstable; urgency=medium

   * [cce20a5] Imported Upstream version 2.2.18. Closes: #786760
   * [36d2ec1] Refresh patch dovecot_name.patch.
   * [109e6f8] Drop patch cve-2015-3420.patch: applied upstream.
   * [6c59f09] Depend on krb5-multidev rather than libkrb5-dev.

dovecot (1:2.2.16-1) unstable; urgency=medium

   * [e9d9193] Imported Upstream version 2.2.16
   * [976c256] Remove gbp- prefix from section names in debian/gbp.conf.
   * [762b9a6] Add Dutch translation. Thanks, Frans Spiesschaert. Closes: #766203
   * [dea3dd6] Drop bye_logout_not_sent.patch: already included upstream.

dovecot (1:2.2.13-12) unstable; urgency=high

   * [48f6fe4] Add patch cve-2015-3420.patch: Fix SSL/TLS handshake failures
     leading to a crash of the login process with newer versions of OpenSSL.
     Closes: #783649 (CVE-2015-3420)

2014

dovecot (1:2.2.13-11) unstable; urgency=high

   * [ebc0377] Don't allow install of dovecot-sieve without a new enough
     dovecot-core. (Closes: #772885)

dovecot (1:2.2.13-10) unstable; urgency=high

   [ Jelmer Vernooij ]
   * [93db7f0] Fix path to 90-sieve-extprograms.conf in dovecot-sieve.postinst.
     Closes: #772703, #772711
 
   [ Jaldhar H. Vyas ]
   * [8c627a4] Add another db_stop this time for triggers.  Die #770695 die!

dovecot (1:2.2.13-9) unstable; urgency=high

   * [5b689f6] Made some overlooked configuration files into conffiles;
     deleted excess files from /usr/share/doc/dovecot-core.
   * [83f2fc4] Explicitly stop debconf in dovecot-core postinst which hopefully
     fixes the last of the install hangs.
     Thanks to Chris Gilbert <zeke.gilbert@gmail.com> (Closes: #770695)

dovecot (1:2.2.13-8) unstable; urgency=medium

   * [b2f652f] Turn off SSL by default and leave SSL cert locations commented
     out. Hopefully this will be a satisfactory lowest common denominator for
     new installs without messing with upgrades.
     (Closes: #771334, #771407)

dovecot (1:2.2.13-7) unstable; urgency=high

   * [daea09a] Commented out cert locations so install doesn't bomb if the
     certs haven't been created yet.
     (Closes: #706216, #732263, #767154, #768253, #769461, #770697)

dovecot (1:2.2.13-6) unstable; urgency=medium

   * [f7205c0] dovecot-dev: removed dependency on dovecot-core
   * [e393868] Removed SSL certificate generation from postinst.  From now on
     you have to do this yourself.  See dovecot-core's README.debian for
     instructions. (Closes: #730828)

dovecot (1:2.2.13-5) unstable; urgency=medium

   * Fix name of organizationName field in SSL configuration for self-
     signed certs. Closes: #760653

dovecot (1:2.2.13-4) unstable; urgency=medium

   * Add Provides with dovecot ABI version, for plugins to depend on.
     Closes: #456021

dovecot (1:2.2.13-3) unstable; urgency=medium

   * Build-depend on clucene 2.3 or later, which upstream lists as the
     minimum version. Closes: #754141
   * Use configuration file for openssl certificate configuration.
   * Use canonical address for Vcs-Browser header.
   * Remove unnecessary asterisk from NEWS entry; fixes lintian warning.
   * Remove unused lintian override for usr/lib/dovecot/imap.
   * dovecot-core: Ignore lintian warnings for empty directories.

dovecot (1:2.2.13-2) unstable; urgency=medium

   * [bd5e34b] Patches from upstreams' hg repo to fix BYE and LOGOUT not being
     sent. (Closes: #751682)
   * [452e336] Czech translation for debconf.
     Thanks to Michal Šimůnek (Closes: #751389)

dovecot (1:2.2.13-1) unstable; urgency=medium

   * [0680040] Imported Upstream version 2.2.13

dovecot (1:2.2.13~rc1-1) unstable; urgency=medium

   * [7751508] Imported Upstream version 2.2.13~rc1
     + Fixes denial of service vulnerability (CVE-2014-3430). Closes: #747549

dovecot (1:2.2.12-3) unstable; urgency=medium

   * [0383db0] Break long line.
   * [c961b6a] Fix installation of sieve plugins. Closes: #742770, #684271
   * [388d2bf] Strip body.rfc5173.txt from the pigeonhole patch, as it is
     non-free. Closes: #745398

dovecot (1:2.2.12-2) unstable; urgency=medium

   * [c882a38] Add build dependencies libstemmer-dev and libexttextcat-dev,
     used by dovecot-lucene.
   * [67762d4] Use autotools-dev to update config.guess and config.sub.
   * [33e79b7] Update Japenese po file. Thanks, victory. Closes: #730171
   * [cbf213b] Add non-standard-dir-perm override for /etc/dovecot/private.

dovecot (1:2.2.12-1) experimental; urgency=medium

   * [52b67de] Update watch file for 2.2 series.
   * [c4eac1f] Verify upstream tarball signature in watch file.
   * [3a81ff9] Imported Upstream version 2.2.12
   * [8950a86] Bump standards version to 3.9.5 (no changes).
   * [cd82417] Add myself to uploaders.

dovecot (1:2.2.10-1) unstable; urgency=low

   * [0496c52] Imported Upstream version 2.2.10
   * [515dd61] Added new package for Lucene full text search support.
     Thanks to Jelmer Vernooij <jelmer@debian.org> for the patch.
     (Closes: #685979)
   * [718a68e] Fix old private key location in README.Debian.
     Thanks to Jelmer Vernooij <jelmer@debian.org> for the patch.
     (Closes: #702385)
   * [42da568] dovecot-solr: Make sure solr-schema.xml gets installed.
     (In /usr/share/dovecot)
     (Closes: #695185)
   * [77acbf7] Added /usr/share/dovecot/dovecot-abi file in dovecot-dev to
     document -- you guessed it! -- the dovecot ABI version.
   * [feb597a] Added support for xz compression.

dovecot (1:2.2.9-1ubuntu5) utopic; urgency=medium

   * No-change rebuild against current debhelper to drop unnecessary upstart
     dependency. (LP: #1351306)

dovecot (1:2.2.9-1ubuntu4) utopic; urgency=medium

   * Rename init.d script to work with the dh_installinit --name option, so
     that it comes back. (LP: #1323274)

dovecot (1:2.2.9-1ubuntu3) utopic; urgency=medium

   * SECURITY UPDATE: denial of service via SSL connection exhaustion
     - debian/patches/CVE-2014-3430.patch: properly close connections in
       src/login-common/client-common.c,
       src/login-common/ssl-proxy-openssl.c,
       src/login-common/ssl-proxy.h.
     - CVE-2014-3430

dovecot (1:2.2.9-1ubuntu2) trusty; urgency=medium

   * d/dovecot-core.config: Drop db_input for ssl-cert-exists; this message
     not actually an error, is documented in the README.Debian, and blocks
     automated upgrades (LP: #1278897).

dovecot (1:2.2.9-1ubuntu1) trusty; urgency=medium

   * Merge from Debian unstable, remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
       - d/dovecot-core.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst: Convert init script to upstart.
     + Use the autotools-dev dh addon to update config.guess/config.sub for
       arm64.
   * Dropped changes, included in Debian:
     - Update Dovecot name to reflect distribution in login greeting.
     - Update Drac plugin for >= 2.0.0 support.
   * d/control: Drop dovecot-postfix package as its no longer required.

dovecot (1:2.2.9-1) unstable; urgency=low

   [ Jaldhar H. Vyas ]
   * [77468cf] Imported Upstream version 2.2.9
   * [43e08f3] Place dovenull user in its own group. (Closes: #725164)
   * [e1a3e9c] Handled the fact that dovecot-db.conf.ext is no longer used.
     (Closes: #728107, #730403)
 
   [Debconf translation updates]
   * Russian (Yuri Kozlov).  (Closes: #729106)
   * German (Chris Leick).  (Closes: #729358)
   * Danish (Joe Hansen).  (Closes: #729425)
   * French (Julien Patriarca).  (Closes: #729966)
   * Portuguese (Américo Monteiro).  (Closes: #730006)
   * Polish (Michał Kułach).  (Closes: #730061)
   * Italian (Beatrice Torracca).  (Closes: #730136)
   * Japanese (victory).  (Closes: #73017)
   * Swedish (Martin Bagge / brother).  (Closes: #730188)
   * Spanish; (Camaleón).  (Closes: #730354)

2013

dovecot (1:2.2.8-1) UNRELEASED; urgency=low

   * [6157a2b] New upstream version 2.2.8

dovecot (1:2.2.5-1) experimental; urgency=low

   [ Micah Anderson ]
   * [a0035bf] New upstream version 2.2.5
   * [a053c49] Update pigeonhole patch to 0.4.1
   * [689cd67] refreshed patches
 
   [ Jaldhar H. Vyas ]
   * Caused bugs and then fixed them again.

dovecot (1:2.1.17-2) unstable; urgency=low

   * [e8286e0] New version of drac patch taken from Ubuntu which works better
     with 2.x (Closes: #716764)
   * [23acb40] Add a patch from Ubuntu to report the distro name in the login
     banner why not.
   * [f8d566e] Don't need dovecot-common package anymore; get rid of it.

dovecot (1:2.1.17-1) experimental; urgency=low

   [ Jaldhar H. Vyas ]
   * [fa0d6aa] Re-enable mbox write locking patch to comply with policy 11.6
     (Closes: #720502)
   * [38691fb] New upstream version (Closes: #719021)
   * [1361144] prompts in dovecot-core postinst debconfiscated.
   * IN MEMORIAM: Goldy the Goldfish (2000-2013)  You were a prince (or
     perhaps princess?) among fish and we shall all miss you dearly.
     May your karmas merit much punya in future lives.

dovecot (1:2.1.16-1) experimental; urgency=low

   * [9741bd8] New Upstream version
   * [3476489] Updated pigeonhole patch to 0.3.5
   * [d4f236f] Removed some patches which are no longer required.

dovecot (1:2.1.7-8) experimental; urgency=low

   * This version is not actually intended for upload.  It merely undoes
     some changes made for the the wheezy release.  Namely, the following
     features are back:
     - TCP Wrappers support
     - Hurd compatibility support
     - Triggers.

dovecot (1:2.1.7-7ubuntu3) saucy; urgency=low

   * Use the autotools-dev dh addon to update config.guess/config.sub for
     arm64.

dovecot (1:2.1.7-7ubuntu2) saucy; urgency=low

   * debian/patches/dovecot_name.patch: updated Dovecot name to reflect
     distribution in login greeting
   * debian/control: added lsb-release as build-dependency
   * debian/rules: added autoconf in config-stamp

dovecot (1:2.1.7-7ubuntu1) raring; urgency=low

   [ James Page ]
   * Merge from Debian unstable (LP: #1117613, #1075456), remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
       - d/dovecot-core.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst: Convert init script to upstart.
     + d/control: Added Pre-Depends: dpkg (>= 1.15.6) to dovecot-dbg to support
       xz compression in Ubuntu.
     + d/control: Demote dovecot-common Recommends: to Suggests: to prevent
       install of extra packages on upgrade.
     + d/patches/dovecot-drac.patch: Updated with version for dovecot >= 2.0.0.
   * Dropped changes, included in Debian:
     + d/{control,rules}: enable PIE hardening.
     + d/control: Drop B-D on systemd.
   * d/p/mail-stack-delivery.postinst: Updated to ensure that configured SSL
     cert and key locations are used when configuring postfix, sorted out
     formatting.
   * d/p/dovecot-core.postinst: Create compat links to old style, existing
     SSL cert and key if found.
   * d/rules: Don't pass hardening flags for DRAC plugin.
   * d/dovecot-{pop3d,imapd}.prerm: Re-sync with Debian.
   * d/dovecot-core.lintian-overrides: Drop override for DRAC plugin as not
     required in Ubuntu.
   * d/01-mail-stack-delivery: Renamed 99-mail-stack-delivery to ensure that
     the mail-stack-delivery configuration overrides configuration options
     set elsewhere, updated with new cert/key file locations.
 
   [ Ante Karamatic ]
   * Change configuration file for LDA on new installs and upgrades
     (LP: #671065).

dovecot (1:2.1.7-7) unstable; urgency=high

   * If you are upgrading from stable or earlier versions of this package
     from testing/unstable please carefully read
     /usr/share/doc/dovecot-core/README.Debian.gz for important information
     about changes.
   * [0d74b31] Move Breaks/Replaces mailavenger from dovecot-common to
     dovecot-core (Closes: #694376)
   * [a8030a1] Revamped dovecot-cores README.Debian by adding any info I could
     think of in order to ease upgrade problems. (Closes: #696820)
   * [04798d3] Don't touch 10-ssl.conf at all.  Eventually I will DTRT with
     regards to the default generated ssl certificates but in the mean time
     this will do the least mischief.  (Closes: #696817)
   * [fde17d1] Patch to make /etc/dovecot/readme point to the right place for
     the example configuration.  (Closes: #698941)

2012

dovecot (1:2.1.7-6) unstable; urgency=high

   * WARNING: in order to get this package into wheezy some functionality
     from the previous release had to be removed.  Namely:
     - TCP Wrappers support
     - Hurd compatability support
     - Triggers
     All this will be coming back in the next version but for now, if you need
     any of it, stick with -5.
   * [1f869e0] NEWS.Debian was not getting added to the package (Closes: #693621)
   * [564c5e2] Add breaks and replaces mailavenger for debian-common
     (Closes: #694376)

dovecot (1:2.1.7-5) unstable; urgency=high

   * [132bc3b] Remove call to ntp-wait in init script.  Dovecot handles a
     skewed clock much better now.  (Closes: #693225)

dovecot (1:2.1.7-4) unstable; urgency=high

   * [68ef7ad] piuparts complained /etc/dovecot/private was left unowned on
     purge which is against policy (Closes: #692944)

dovecot (1:2.1.7-3) unstable; urgency=high

   [ Jaldhar H. Vyas ]
   * [03d5499] Do not generate new dovecot cert if key or cert is already
     present (Closes: #685896,#631257) Thanks to Alexander Ufimtsev
     <alexu@ucd.ie> and Jörg-Volker Peetz <jvpeetz@web.de> for patches.
   * [5be6c2a] You should be able to upgrade and remove dovecot-managesieved
     without errors (Closes: #665487)
   * [1a9ad5c] Fixes instances where UTF-8 was misused instead of mUTF-7
     (Closes: #680035)
   * [c0ac3ba] Backport of fix for failure to autocreate mailboxes
     (Closes: #623440) This also requires setting the default mail_location.
   * [ba1d3f5] Fix FTBS on Hurd (Closes: #686931) via upstream patch backported
     from mercurial.
   * [cfa92b5] Upgrade pigeonhole page to 0.3.1 (Closes: #688407)
   * [58f01c2] Generated certificates will now be created in /etc/dovecot
     (Closes: #608719)
   * [8e40ea5] Patch to build with PIE and bindnow
     by intrigeri@debian.org (Closes: #679017)
   * [87d982b] Use libwrap (Closes: #685850)
   * [ebb5421] Start after nslcd (Closes: #692632)
   * [2db5c1a] Add support for dpkg triggers.  This means dovecot will not be
     repeatedly restarted when installing or removing lots of plugins
     (Closes: #601744)
   * [bc66629] Patch to document -k in dsync.1
     by Luca Capello <luca@pca.it> (Closes: #680992)
   * [ba67766] Add lintian overrides.
 
   [ Marco Nenciarini ]
   * [ffba408] Updated watch file
   * [9777434] Install missing default configuration files from upstream
   * [9496828] Backport fix for segfault in managesieve triggered by
     CHECKSCRIPT command. (Closes: #688197)

dovecot (1:2.1.7-2) unstable; urgency=low

   * [e23a136] Just a quick upload to make dovecot buildable on non-linux
     platforms again. (Closes: #676817) I did it by removing the systemd
     build-dep altogether.  sd-daemon.[ch] is included in the source so if
     systemd is installed on a system, it should be detected and socket
     activation should happen.  That is, assuming I've got everything right
     (and documented) which is something I'll be looking into for the next
     version.

dovecot (1:2.1.7-1ubuntu2) quantal; urgency=low

   * d/dovecot-core.dovecot.upstart: Respawn to handle unexpected but
     recoverable problems. (LP: #718188)

dovecot (1:2.1.7-1ubuntu1) quantal; urgency=low

   * Merge from Debian unstable, remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
       - d/dovecot-core.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/{control,rules}: enable PIE hardening.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst: Convert init script to upstart.
     + d/control: Added Pre-Depends: dpkg (>= 1.15.6) to dovecot-dbg to support
       xz compression in Ubuntu.
     + d/control: Demote dovecot-common Recommends: to Suggests: to prevent
       install of extra packages on upgrade.
     + d/patches/dovecot-drac.patch: Updated with version for dovecot >= 2.0.0.
     + d/control: Drop B-D on systemd.
   * Dropped changes:
     + d/patches/fix-racey-restart.patch: part of 2.1.x, no longer required.

dovecot (1:2.1.7-1) unstable; urgency=low

   * [7668742] Imported upstream 2.1.7 (Closes: #663243)
               + doveadm.1 documents the move command. (Closes: #641750)
   * [4db927a] Patch to enable systemd support.  (Closes: #672266)
               Thanks Riku Voipio.
   * [e17ac86] Previous attempt at setting hardening flags did not include the
               drac plugin.  Simon Ruderich provided an extra patch.
               (Closes: #653530)

dovecot (1:2.1.4-1) experimental; urgency=low

   * [6cc1e7d] Imported upstream 2.1.4

dovecot (1:2.1.3-1) experimental; urgency=low

   * [49ecc33] Imported upstream 2.1.3

dovecot (1:2.1.2-1) experimental; urgency=low

   * [70c3f6e] Imported upstream 2.1.2
   * Add missing dependency on dpkg-dev 1.16.1

dovecot (1:2.1.1-1) experimental; urgency=low

   * [e113636] Imported upstream 2.1.1
   * Updated pigeonhole patch to 0.3.0, supporting 2.1

dovecot (1:2.0.19-0ubuntu1) precise; urgency=low

   * New upstream release (LP: #970782).
   * Merge from Debian testing, remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
       - d/dovecot-core.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/{control,rules}: enable PIE hardening.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst:
         Convert init script to upstart.
     + d/patches/fix-racey-restart.patch: Backported patch from current
       development release which ensures all child processes terminate prior
       to the main dovecot process.
     + debian/patches/CVE-2011-4318.patch: Dropped - applied upstream
     + d/control: Added Pre-Depends: dpkg (>= 1.15.6) to dovecot-dbg to support
       xz compression in Ubuntu.
     + d/control: Demote dovecot-common Recommends: to Suggests: to prevent
       install of extra packages on upgrade.
   * d/patches/dovecot-drac.patch: Updated with version for dovecot >= 2.0.0.

dovecot (1:2.0.18-1) unstable; urgency=low

   * [85ae320] Imported Upstream version 2.0.18
   * [9cfd1da] Upped standards version to 3.9.3
   * [afb4164] Patch to dovecot-core/postinst so that permissions of symlinked
     certificates aren't modified. (Closes: #646508)
     Thanks Michael Kuhn.
   * [bf642ee] Patch to enable hardened build flags.  (Closes: #653530)
     Thanks Moritz Muehlenhoff.
   * [00b0d0c] Updated pigeonhole to 0.2.6

2011

dovecot (1:2.0.15-1ubuntu5) precise; urgency=low

   * SECURITY UPDATE: Incorrect cert Common Name verification when proxying
     - debian/patches/CVE-2011-4318.patch: correctly validate Common Name
       when a hostname is specified in src/login-common/{login-proxy.c,
       ssl-proxy.*,ssl-proxy-openssl.c}.
     - CVE-2011-4318

dovecot (1:2.0.15-1ubuntu4) precise; urgency=low

   * No-change rebuild to drop spurious libsfgcc1 dependency on armhf.

dovecot (1:2.0.15-1ubuntu3) precise; urgency=low

   * Rebuild for libmysqlclient transition.

dovecot (1:2.0.15-1ubuntu2) precise; urgency=low

   * Resolve issue with intermittent restart failures (LP: #873390):
     - d/patches/fix-racey-restart.patch: Backported patch from current
       development release which ensures all child processes terminate prior
       to the main dovecot process.

dovecot (1:2.0.15-1ubuntu1) precise; urgency=low

   * Merge from Debian Testing, remaining changes:
     + Add mail-stack-delivery package:
       - Update d/rules
       - d/control: convert existing dovecot-postfix package to a dummy
         package and add new mail-stack-delivery package.
       - Update maintainer scripts.
       - Rename d/dovecot-postfix.* to debian/mail-stack-delivery.*
       - d/mail-stack-delivery.preinst: Move previously installed backups and
         config files to a new package namespace.
       - d/mail-stack-delivery.prerm: Added to handle downgrades.
     + Use Snakeoil SSL certificates by default:
       - d/control: Depend on ssl-cert.
       - d/dovecot-core.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - d/dovecot-core.ufw.profile: new ufw profile.
       - d/rules: install profile in dovecot-core.
       - d/control: dovecot-core - suggest ufw.
     + d/{control,rules}: enable PIE hardening.
     + d/dovecot-core.dirs: Added usr/share/doc/dovecot-core
     + Add apport hook:
       - d/rules, d/source_dovecot.py
     + Add upstart job:
       - d/rules, d/dovecot-core.dovecot.upstart, d/control,
         d/dovecot-core.dirs, dovecot-imapd.{postrm, postinst, prerm},
         d/dovecot-pop3d.{postinst, postrm, prerm}.
         d/mail-stack-deliver.postinst:
         Convert init script to upstart.
   * d/01-mail-stack-delivery.conf: Add postfix->dovecot auth listener
     to mail-stack-delivery configuration (LP: #874135).
   * d/mail-stack-delivery.{postinst,postrm}: Restart dovecot to pickup/drop
     mail-stack-delivery configuration (LP: #870244).
   * d/control: Added Pre-Depends: dpkg (>= 1.15.6) to dovecot-dbg to support
     xz compression in Ubuntu.
   * d/control: Demote dovecot-common Recommends: to Suggests: to prevent
     install of extra packages on upgrade.

dovecot (1:2.0.15-1) unstable; urgency=low

   * [a22575a] New upstream version 2.0.15: (Closes: #642045)
       + doveadm altmove: Added -r parameter to move mails back to primary
         storage.
       - v2.0.14: Index reading could have eaten a lot of memory in some
         situations
       - doveadm index no longer affects future caching decisions
       - mbox: Fixed crash during mail delivery when mailbox didn't yet have
         GUID assigned to it.
       - zlib+mbox: Fetching last message from compressed mailboxes crashed.
       - lib-sql: Fixed load balancing and error
   * [8ce5abc] Update pigeonhole to release 0.2.4
   * [87658d2] Add dovecot-solr to dovecot-core's Suggests line.

dovecot (1:2.0.14-3) unstable; urgency=low

   * [f37a9ec] Enable solr full text search plugin. (LP: #620959)
   * [cdd8b84] Build dovecot-common as architecture-all package.
   * [af90444] Fix mail_plugin_dir default value in conf.d/10-mail.conf
     (Closes: #624294)
   * [61347cb] Bump debhelper build-depends to (>= 7.2.3~) because we use
     dh_bugfiles.
   * [4b757b6] Fix wrong configuration files path in sieve manpages.

dovecot (1:2.0.14-2) unstable; urgency=low

   [ Marco Nenciarini ]
   * [a6896d6] Rename dovecot-common to dovecot-core. (Closes: #624835)
   * [c36ca96] Manage protocols during package configuration and
     deconfiguration phases.
   * [599b55b] Update pigeonhole to release 0.2.3.
   * [c654db0] Add a bug-script which will append doveconf -n output to bug
     reports.
   * [5270323] Add notes about upgrading from 1.2 to README.Debian.
     (Closes: #635351)
   * [5cd77a3] Add build-arch and build-indep target to debian/rules as
     required by lintian.
   * [be05d2a] Avoid ucf question when upgrading from squeeze and the only
     difference in dovecot.conf is at the "protocols" line.
   * [3c73782] Remove ucf backups during purge.
   * [3ccf508] Make /etc/dovecot/*.ext readable by dovecot group members.
     (Closes: #639005)
   * [665bcc5] Use -c ${CONF} when calling doveconf to determine PIDBASE.
     Thanks to Jonathan Hall (Closes: #627794)
   * [325042c] Purge obsolete unmodified config files from /etc.
     (Closes: #629397)
   * [a9b9afb] Modified init script to report failures. (Closes: #629654)
   * [d4622fd] Make dovecot-core suggesting all other packages containing
     additional features.

dovecot (1:2.0.14-1) unstable; urgency=low

   * [50a947e] New upstream version 2.0.14: (Closes: #640143)
       + doveadm: Added support for running mail commands by proxying to
         another doveadm server.
       + Added "doveadm proxy list" and "doveadm proxy kick" commands to
         list/kick proxy connections (via a new "ipc" service).
       + Added "doveadm director move" to assign user from one server to
         another, killing any existing connections.
       + Added "doveadm director ring status" command.
       + userdb extra fields can now return name+=value to append to an
         existing name, e.g. "mail_plugins+= quota".
       - script-login attempted an unnecessary config lookup, which usually
         failed with "Permission denied".
       - lmtp: Fixed parsing quoted strings with spaces as local-part for
         MAIL FROM and RCPT TO.
       - imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not
         returned all data sometimes.
       - ldap: Fixed random assert-crashing with with sasl_bind=yes.
       - Fixes to handling mail chroots
       - Fixed renaming mailboxes under different parent with FS layout when
         using separate ALT, INDEX or CONTROL paths.
       - zlib: Fixed reading concatenated .gz files.
   * [0297425] Use xz compression for dbg packages.
   * [4464ccf] Support parallel builds in debian/rules
   * [19667f0] Acknowledge NMU 1:2.0.13-1.1.
     Thanks to Luk Claes

dovecot (1:2.0.13-1.1) unstable; urgency=low

   * Non-maintainer upload.
   * Don't ship .la files (Closes: #621297).

dovecot (1:2.0.13-1ubuntu3) oneiric; urgency=medium

   [ Ben Howard ]
   * debian/dovecot-common.dovecot.upstart: changed start to runlevel [2345]
     (LP: #820685)
 
   [ James Page ]
   * Make mail-stack-delivery work with new version of dovecot (LP: #860336):
     - debian/control: Added dovecot-managesieved to mail-stack-delivery Depends.
     - debian/01-mail-stack-delivery.conf: Renamed mangesieve protocol -> sieve.
       Tidied up obsolete and changed configuration stanzas.
     - debian/mail-stack-delivery.postinst: drop -n flag from dovecot deliver
       command in postfix configuration.

dovecot (1:2.0.13-1ubuntu2) oneiric; urgency=low

   * debian/dovecot-common.postinst: fix ssl cert typos that prevent
     certs from being generated (LP: #792557)

dovecot (1:2.0.13-1ubuntu1) oneiric; urgency=low

   * Merge from Debian Unstable, remaining changes:
     + Add mail-stack-delivery as per server-maverick-mail-integration spec:
       - Update debian/rules
       - Convert existing package to a dummy package and new binary in debian/control.
       - Update maintainer scripts.
       - Move previously installed backups and config files to a new package namespace in preinst.
       - Add new debian/mail-stack-delivery.prerm to handle downgrades.
       - Rename debian/dovecot-postfix.* to debian/mail-stack-delivery.*
     + Use Snakeoil SSL certifications by default:
       - debian/control: Depend on ssl-cert.
       - debian/dovecot-common.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - Create debian/dovecot-common.ufw.profile.
       - debian/rules: install profile
       - debian/control: suggest ufw.
     + debian/{control,rules}: enable PIE hardening.
     + debian/dovecot-common.dirs: Added usr/share/doc/dovecot-common
     + Add apport hook:
       - debian/rules, debian/source_dovecot.py
     + Add upstart job:
       - debian/rules, debian/dovecot-common.dovecot.upstart, debian/control,
         debian/dovecot-common.dirs, dovecot-imapd.{postrm, postinst, prerm},
         debian/dovecot-pop3d.{postinst, postrm, prerm}. mail-stack-deliver.postinst:
         Convert init script to upstart. Apart of the server-maverick-upstart-conversion
         specification.

dovecot (1:2.0.13-1) unstable; urgency=high

   [ Marco Nenciarini ]
   * [8af9e4d] New upstream version 2.0.13:
       + Added "doveadm index" command to add unindexed messages into
         index/cache. If full text search is enabled, it also adds unindexed
         messages to the fts database.
       + added "doveadm director dump" command.
       + pop3: Added support for showing messages in "POP3 order", which can
         be different from IMAP message order. This can be useful for
         migrations from other servers. Implemented it for Maildir as 'O'
         field in dovecot-uidlist.
       - doveconf: Fixed a wrong "subsection has ssl=yes" warning.
       - mdbox purge: Fixed wrong warning about corrupted extrefs.
       - sdbox: INBOX GUID changed when INBOX was autocreated, leading to
         trouble with dsync.
       - script-login binary wasn't actually dropping privileges to the
         user/group/chroot specified by its service settings.
       - Fixed potential crashes and other problems when parsing header names
         that contained NUL characters. (CVE-2011-1929)
     (Closes: #627443)

dovecot (1:2.0.12-1ubuntu1) oneiric; urgency=low

   * Merge from Debian Unstable, remaining changes are:
     + Add mail-stack-delivery as per server-maverick-mail-integration spec:
       - Update debian/rules
       - Convert existing package to a dummy package and new binary in debian/control.
       - Update maintainer scripts.
       - Move previously installed backups and config files to a new package namespace in preinst.
       - Add new debian/mail-stack-delivery.prerm to handle downgrades.
       - Rename debian/dovecot-postfix.* to debian/mail-stack-delivery.*
     + Use Snakeoil SSL certifications by default:
       - debian/control: Depend on ssl-cert.
       - debian/dovecot-common.postinst: Relax grep for SSL_* a bit.
     + Add autopkgtest to debian/tests/*.
     + Add ufw integration:
       - Create debian/dovecot-common.ufw.profile.
       - debian/rules: install profile
       - debian/control: suggest ufw.
     + debian/{control,rules}: enable PIE hardening.
     + debian/dovecot-common.dirs: Added usr/share/doc/dovecot-common
     + Add apport hook:
       - debian/rules, debian/source_dovecot.py
     + Add upstart job:
       - debian/rules, debian/dovecot-common.dovecot.upstart, debian/control,
         debian/dovecot-common.dirs, dovecot-imapd.{postrm, postinst, prerm},
         debian/dovecot-pop3d.{postinst, postrm, prerm}. mail-stack-deliver.postinst:
         Convert init script to upstart. Apart of the server-maverick-upstart-conversion
         specification.

dovecot (1:2.0.12-1) unstable; urgency=low

   [ Jaldhar H. Vyas ]
   * [66cbb94] New upstream major release.  Imported Upstream version 2.0.12
   * [a48c7fd] Updated standards version
 
   [ Marco Nenciarini ]
   * [5c6b334] Updated watch file
   * [0ba683e] Updated init script to new configuration scheme. (Closes: #593527)
   * [8370be4] Fix upgrading from rename-it.nl packages
   * [ae804e3] Update changelog

dovecot (1:2.0.11-1) experimental; urgency=low

   * [a4764a4] New upstream major release (Closes: #573889, #580929,
     #597476, #603951, #606089, #606646, #606649, #608075, #612369, #610919)
   * [461f667] Updated copyright and package descriptions. Thanks Stephan
     Bosch.
   * [7fbd92a] Drop all patches but drac support. Update pigeonhole to
     release 0.2.1
   * [05a5a1e] Update debian/rules to work with dovecot 2.0. Thanks
     Stephan Bosch.
   * [a36193e] Update debian/dovecot-common.{postinst,postrm} to handle
     the new config file layout. Thanks Stephan Bosch.
   * [3589afd] Remove debian/dovecot.1 manpage because is provided by
     upstream.
   * [f1703e1] Remove debian/dovecotpw.1 manpage as there is no dovecotpw
     executable in dovecot 2.0. Same feature is provided through 'doveadm
     pw' command.
   * [e30283d] Remove expire-tool.sh wrapper as there is no expire-tool
     in dovecot 2.0. Same feature is provided through 'doveadm expunge'
     command.
   * [3385061] Remove daily cron script and the related configuration
     from the default file.
   * [bec19a0] Update debian/dovecot-common.NEWS.Debian with upgrading
     instructions
   * [1e56f1c] Call dh_makeshlibs with --no-script option to avoid
     {postinst,postrm}-has-useless-call-to-ldconfig lintian errors.
   * [325f055] Disable numbers in patches (requires git-buildpackage >=0.5.13)
   * [74d6ebe] Added debian/source/local-options with "unapply-patches".
   * [0edef17] Set default protocols value as empty and enable each
     protocol in its own configuration file in
     /usr/share/dovecot/protocols.d (LP: #661453)
   * [e88860c] Removed code about upgrading from pre-etch packages.
   * [95c5d47] Removed obsolete Build-Conflict (Closes: #614053)
   * [41dddf4] Move configurations for imapd and pop3d to the appropriate
     packages. (Closes: #606648)
   * [b8b66dc] Removed obsolete README.Debian and NEWS.Debian from
     dovecot-pop3d and dovecot-imapd packages
   * [0bda8ac] Added packages dovecot-lmtpd and dovecot-managesieved.
   * [9a954f1] Build databases, ldap and gssapi support as plugins
   * [1a3f323] Deregister obsolete configuration files from ucf in
     dovecot-common postinst on upgrades.
   * [fae4b76] Added packages dovecot-pgsql, dovecot-mysql, dovecot-sqlite,
     dovecot-ldap, dovecot-gssapi and dovecot-sieve (Closes: #251433)
   * [aa8983d] Imported Upstream version 2.0.11

2010

dovecot (1:1.2.15-3) unstable; urgency=low

   * [096c373] Fix file overwrite error when upgrading from lenny
     (Closes: #601980)
   * [37b3220] Add --no-create-home to adduser invocation in dovecot-
     common.postinst script (Closes: #601767)
   * [b00b527] Fall back to `hostname` if `hostname -f` invocation fails
     (Closes: #562780)
   * [9102fec] Make self-generated certificates key length 2048 bits.

dovecot (1:1.2.15-2) unstable; urgency=low

   * [a0744a5] Switch vcs fields to git
   * [d8a1bd4] Add debian/gbp.conf to make easy the usage of git-
     buildpackage
   * [c0dc21f] Warn that the generated SSL certificate will expire in 10
     years instead of 365 days, as it's the lifetime of of self-generated
     certificates since 1:1.2.13-1
   * [6472d63] Switch to gbp-pq patch management.
   * [bf2fc17] Upgraded sieve plugin to version 0.1.18
   * [6b9809d] Upgraded managesieve plugin to version 0.11.12
   * [d67cd17] Upgraded dovecot-managesieve.patch to version 0.11.12

dovecot (1:1.2.15-1) unstable; urgency=high

   [ Marco Nenciarini ]
   * New upstream release (Closes: #587036,#597529)
   * Updated policy version to 3.9.1.0 (no changes needed)
 
   [ Jaldhar H. Vyas ]
   * [SECURITY] Fixes two bugs with acls which could have allowed a user to
     gain improper access or admin rights to shared mailboxes.
     (Closes: #599521)
   * Warn that the generated SSL certificate will expire in 365 days.  Thanks
     Phillip Weis.  (Closes: #576455)
   * Wherever the path to sendmail is given as /usr/lib/sendmail, change to
     /usr/sbin/sendmail.  (Closes: #570814,#595671)

dovecot (1:1.2.13-1) unstable; urgency=low

   [ Jaldhar H. Vyas ]
   * dovecot-common: Upped expiration date of self-generated certificates to
     10 years from 1 year.  (Closes: #587371)
 
   [ Marco Nenciarini ]
   * New upstream release:
     - Fixed iconv() crash when it was processing several kilobytes of
       broken continuous input. This mainly could have caused a problem
       with IMAP SEARCH. Possibly also with some Sieve checks.
     - If MIME encoded-words contained line feeds, Dovecot logged
       cache corruption errors.
     - mbox: Renaming mailbox under newly created dir didn't move index
       directory.
     - mbox: When generating envelope to From_-line, don't append a second
       @owndomain if username already has one.
   * Updated policy version to 3.9.0.0 (no changes needed)

dovecot (1:1.2.12-1) unstable; urgency=low

   * New upstream release
   * Upgraded sieve plugin to version 0.1.17
   * Refreshed dovecot-managesieve.patch
   * debian/patches/sieve-fix-imapflags.patch: Removed. Fixed upstream.

dovecot (1:1.2.11-1) unstable; urgency=high

   * New upstream release
   * urgency set to high, because under particular circumstances you could
     cause a DoS by sending a message with a huge header.
   * sieve: Fix addflags command in deprecated imapflags extension
     (Closes: #570058)
   * Include a daily expire script with a setting in /etc/default/dovecot
     to enable it. The new script is disabled by default as it requires
     some configurations by the system administrator. Thanks to Hans Spaans
   * Mark expire-tool.sh as a bash script
   * Bump Standards-Version to 3.8.4, no changes needed

dovecot (1:1.2.10-1) unstable; urgency=low

   * New upstream release (Closes: #566796)
   * Upgraded sieve plugin to version 0.1.15
   * Upgraded managesieve plugin to version 0.11.11
   * Upgraded dovecot-managesieve.patch to version 0.11.11

dovecot (1:1.2.9-2) unstable; urgency=low

   * Upgraded sieve plugin to version 0.1.14
   * Upgraded managesieve plugin to version 0.11.10
   * Upgraded dovecot-managesieve.patch to version 0.11.10
   * debian/patches/dovecot-example.patch: Refreshed.
   * Added expire-tool wrapper script (Closes: #565538)
   * Added ${misc:Depends} to the dependencies of each binary package,
     to make lintian happy (debhelper-but-no-misc-depends)

2009

dovecot (1:1.2.9-1) unstable; urgency=low

   * New upstream release.
   * debian/patches/gold-fix.patch: Removed. Fixed upstream.

dovecot (1:1.2.8-2) unstable; urgency=low

   * Moved libexec to lib corrections in dovecot-managesieve.patch and
     dovecot-managesieve-dist.patch to dovecot-example.patch
   * debian/patches/dovecot-mboxlocking.patch: Regenerated to avoid FTBFS
     when quilt isn't installed.
   * debian/patches/quota-mountpoint.patch: Removed. Not needed anymore.
   * debian/patches/dovecot-quota.patch: Removed. Quotas aren't properly
     enabled unless mail_plugins = quota imap_quota.
   * debian/patches/gold-fix.patch: Fixed configure script to build even
     with binutils-gold or --no-add-needed linker flag (Closes: #554306)
   * debian/dovecot-common.init: fixed LSB headers. Thanks to Pascal Volk.
     (Closes: #558040)
   * debian/changelog: added CVE references to previous changelog entry.
   * debian/rules: checked up the build system. It's not fragile anymore.
     (Closes: 493803)
   * debian/dovecot-common.postinst: Now invoking dpkg-reconfigure
     on dovecot-common is enough to generate new certificates
     if the previous ones were removed. (Closes: #545582)
   * debian/rules: No longer install convert-tool in /usr/bin.
     It isn't an user utility and it should stay in /usr/lib/dovecot
     like all other similar tool.

dovecot (1:1.2.8-1) unstable; urgency=high

   [ Marco Nenciarini ]
   * New upstream release. (Closes: #557601)
   * [SECURITY] Fixes local information disclosure and denial of service.
     (see: http://www.dovecot.org/list/dovecot-news/2009-November/000143.html
     and CVE-2009-3897)
   * Added myself to uploaders.
   * Switched to the new source format "3.0 (quilt)":
     - removed dpatch from build-depends
     - removed debian/README.source because now we use only standard
       dpkg features
     - regenerated all patches
   * Prepared to switch to multi-origin source:
     - recreated dovecot-libsieve.patch and dovecot-managesieve-dist.patch
       starting from the upstream tarball
     - removed all autotools related build-depends and build-conflict
     - renamed dovecot-libsieve and dovecot-managesieve directories
       to libsieve and managesieve.
   * debian/rules: Moved the configuration of libsieve and managesieve from
     the build phase to the configuration phase
 
   [ Jaldhar H. Vyas ]
   * Added dovecot-dbg package  with debugging symbols.  Thanks Stephan Bosch.
     (Closes: #554710)
   * Fixed some stray libexec'isms in the default configuration.

dovecot (1:1.2.7-1) unstable; urgency=low

   * New upstream release.
   * debian/dovecot-common.init:
     - use $CONF when starting the daemon. (Closes: #549944)
     - always output start/stop messages. (Closes: #523810)

dovecot (1:1.2.6-1) unstable; urgency=low

   * New upstream relese.
   * debian/patches/v1.2.5-exec-mail_fix.dpatch: removed, merged upstream.

dovecot (1:1.2.5-2) unstable; urgency=low

   * debian/dpatches/v1.2.5-exec-mail_fix.dpatch: added.
     (Closes: #546694, #546695)
   * debian/dovecot-common.dirs: removed /etc, /etc/ssl/{private,certs}, they
     are handled by openssl; this should fix the piuparts test.

dovecot (1:1.2.5-1) unstable; urgency=low

   * New upstream release.

dovecot (1:1.2.4-2) unstable; urgency=low

   * debian/patches/dovecot-libsieve.dpatch: updated to 0.1.12.
     (Closes: #539527)

dovecot (1:1.2.4-1) unstable; urgency=low

   * New upstream release. (Closes: #537186, #540058)
   * Bumped Standards-Version to 3.8.3, no changes needed.
   * debian/control: only suggests ntp. (Closes: #542152)
   * debian/patches/dovecot-managesieve-dist.dpatch: updated to the 0.11.9
     release. (Closes: #539527)
   * debian/rules: dovecot should be started with sequence number 20.
     (Closes: #543473)

dovecot (1:1.2.2-2) unstable; urgency=high

   * Er that should be fcntl not fnctl.  (Closes: #539474, #539486)
   * For the sake of completeness, fixed some errors in the example config file.
     (They are in the !include statements which are commented out by default
     so it is unlikely that most users will actually be affected.)
     (Closes: #539391)

dovecot (1:1.2.2-1) unstable; urgency=low

   [Joel Johnson]
   * New upstream version, updated ManageSieve patch
      - fixes index corruption condition (Closes: #537388)
   * Set default for mbox_write_locks to "fnctl dotlock" according to
     Debian Policy (Closes: #537326)
   * Set MySQL build dependency to use version-agnostic -dev package
   * Drop postgres-configure patch, functionality included upstream
   * Updated dovecot-libsieve to version 0.1.9
      - fixes subaddress matching (Closes: #537386)
      - check additional address-list headers (Closes: #537379)
 
   [Jaldhar H. Vyas]
   * Remove unneeded build-dependencies on byacc and flex now that we no longer
     use cmusieve.

dovecot (1:1.2.1-2) unstable; urgency=low

   * Update to use default automake (Closes: #536880) now that current upstream
     successfully builds with 1.10 (was previously a problem in bug 473754.
   * Updated Standards-Verson to 3.8.2 (no action required)
   * Remove ./var/run directories to fix lintian warnings.
   * Updated dovecot-libsieve patch to version 0.1.8, removed autogen.sh,
     tests, and doc/rfc
   * Updated dovecot-managesieve patch to version 0.11.7
   * Updated dovecot-managesieve-dist patch to Mercurial revision 12b9733ee8b0
       (0.11.7+), removed lib-cmusieve, doc/rfs, autogen.sh
   * Add additional upgrading note to README.Debian to clarify the ManageSieve
     configuration changes needed - existing configurations break if not
     updated! (Closes: #537158)
   * Include the ChangeLog and README for sieve and ManageSieve

dovecot (1:1.2.1-1) unstable; urgency=low

   [ Joel Johnson ]
   * New upstream release
   * Update packaging for 1.2 release
     - update SIEVE patch to use Dovecot rewrite (version 0.1.7,
         removed RFCs and tests for a DFSG patch)
     - update ManageSieve patch and software to hg revision 2c9b4b4ab6a8
         (0.11.6+) for 1.2.1 support
         + removed lib-cmusieve since building against newer sieve
         + removed doc/rfc for DFSG compliance
         + removed autogen.sh since we run autotools during the build
     - updated other misc patches

dovecot (1:1.1.16-1) unstable; urgency=low

   * New upstream release. (Closes: #531599)

dovecot (1:1.1.15-1) unstable; urgency=low

   * New upstream release; sorry, no time to include extra upstream patches
     which are not released, feel free to submit them as dpatch files and I will
     add them to the package. (Closes: #529923)
   * debian/control: updated Standards-Version, no changes needed.
   * debian/dovecot-common.init: patched to support ENABLED=0 in
     /etc/default/dovecot, useful if dovecot is used as local-only IMAP server
     through PREAUTH interface. (Closes: #524302)
   * debian/dovecot-common.README.Debian: simplyfied, we only point the user to
     wiki.dovecot.org; added a note about how to regenerate the SSL certificate.
     (Closes: #528934)
   * debian/dovecot-common.postrm: do not break if /etc/ssl/certs does not
     exist. (Closes: #524865)
   * debian/patches/dovecot-managesieve-dist: updated to 0.10.6.

dovecot (1:1.1.13-2) unstable; urgency=high

   * New upload, urgency set to high: the package in testing is broken.
   * debian/dovecot-common.init: fixed a typo.
   * debian/patches/dovecot-example.dpatch: fixed a few paths.
     (Closes: #521544)

dovecot (1:1.1.13-1) unstable; urgency=low

   * New upstream release.
   * This version fixes problems accessing mailboxes in some setups.
     (Closes: #520310)

dovecot (1:1.1.12-1) unstable; urgency=low

   * New upstream release, it fixes some wrong defaults in the configuration
     file. (Closes: #518631)
   * debian/rules: add support for libdb. (Closes: #518630)
   * debian/dovecot-common.postinst: create the dovecot certificate only at
     install time. (Closes: #518738, #518598)

dovecot (1:1.1.11-4) unstable; urgency=low

   * debian/dovecot-common.init: fixed a typo from the last upload.
     (Closes: #518504)

dovecot (1:1.1.11-3) unstable; urgency=low

   * debian/dovecot-common.init: applied patch from Håkon Stordahl to call
     ntp-wait if available. (Closes: #517808)

dovecot (1:1.1.11-2) unstable; urgency=low

   * debian/dovecot-common.init: fixed a bug in the init script, adding a
     missing slash in the PIDFILE path. (Closes: #516845)
   * debian/dovecot-common.init: fixed a bug in the init script, sending the HUP
     signal for reloading the configuration. (Closes: #512197)
   * debian/dovecot-common.init: check if /etc/inetd.conf exists.
     (Closes: #509259, #497148)
   * debian/control: dovecot-common suggests ntp and ntpdate. (Closes: #511060)
   * debian/dovecot-common.postinst: migration hook for default_mail_env =>
     mail_location. (Closes: #517073)
   * debian/dovecot.1: fixed the path of the configuration file.
     (Closes: #501493)

dovecot (1:1.1.11-1) unstable; urgency=low

   * New upstream release, upload to unstable. (Closes: #507122)
   * debian/patches/dovecot-quota.dpatch: fixed a bug in the imap quota plugin.
     (Closes: #484677)
   * debian/dovecot-common.init: added the status action, thanks Fladischer
     Michael for the patch. (Closes: #509694)
   * debian/dovecotpw.1: added manpage for dovecotpw, thanks Xavier Luthi for
     the patch. (Closes: #504712)

dovecot (1:1.1.9-1) experimental; urgency=low

   [ Fabio Tranchitella ]
   * debian/control: dovecot-common suggests ntp.
 
   [ Joel Johnson ]
   * New upstream release
   * updated managesieve patch to apply against new version

dovecot (1:1.1.8-1) experimental; urgency=low

   * New upstream release.
   * debian/control: added LDA to the description of dovecot-common.

2008

dovecot (1:1.1.7-1) experimental; urgency=low

   * New upstream release
   * Updated dovecot-ssh.patch for new release
   * Updated MANAGESIEVE to 0.10.4
   * Fix package to support double compilation
     - Properly clean dovecot-managesieve as pointed out by Stephan Bosch
     - Add --copy directive to automake invocation

dovecot (1:1.1.2-3) experimental; urgency=low

   * debian/control: added libbz2-dev to the Build-Depends to enable the bzip2
     support. (Closes: #495129)

dovecot (1:1.1.2-2) experimental; urgency=low

   * Merged changes in the unstable package.
   * debian/control: added replaces for the imap and pop modules from the
     -common to the the -imap and -pop packages. (Closes: #493798)
   * debian/rules: applied some of the suggestions from Matthias Kloses,
     thanks! (Refs: #493803)

dovecot (1:1.1.2-1) experimental; urgency=low

   * New upstream release
   * Trivial update to autocreate patch

dovecot (1:1.1.1-1) experimental; urgency=low

   [ Joel Johnson ]
   * New upstream release (Closes: #487989)
   * Updated policy version to 3.8.0.1 (no changes needed)
   * Updated watch file to watch new release directory
   * Actually install dovecot.8 since we have it
   * Removed quota_v2 patch (was unreachable code): upstream now defaults
     to quota v1 if _LINUX_QUOTA_VERSION is not defined
   * Removed pam-error-information patch: included upstream
   * Removed mbox_snarf patch: included upstream
   * Removed full MANAGESIEVE patch (replaced with new 1.1 approach)
   * Merged protocols_none_by_default patch into dovecot-example patch
   * Updated drac patch to build against 1.1
   * Updated autocreate patch with 1.1 version
   * Updated dovecot-sieve to 1.1.5
   * Added dovecot-managesieve patch against dovecot tree
   * Added dovecot-managesieve source for building module
 
   [ Fabio Tranchitella ]
   * Added Joel Johnson to the uploaders; thanks for your work!

dovecot (1:1.0.15-2) unstable; urgency=low

   * debian/dovecot.1: added "This includes doing a syntax check" to the -a
     option.
   * debian/rules: now the package builds two times in a row without problems.
     (Closes: #490201)

dovecot (1:1.0.15-1) unstable; urgency=low

   * New upstream release.
   * debian/rules: clean the package before unpatching. (Closes: #490201)

dovecot (1:1.0.14-1) unstable; urgency=low

   * New upstream release.
   * debian/patches/inbox_creation.dpatch: removed, merged upstream.
   * debian/patches/allow_nets.dpatch: removed, merged upstream.

dovecot (1:1.0.13-6) unstable; urgency=low

   * debian/patches/inbox_creation.dpatch: added, use mail_privileged_group's
     group when creating inboxes if the unprivileged user fails; upstream:
     http://hg.dovecot.org/dovecot-1.0/rev/932768a879c6 (Closes: #471716)

dovecot (1:1.0.13-5) unstable; urgency=low

   * debian/patches/allow_nets.dpatch: added, allow_nets didn't work correctly
     with big endian machines; patch from upstream, thanks Timo:
     http://hg.dovecot.org/dovecot-1.0/rev/71c02fdf1b59

dovecot (1:1.0.13-4) unstable; urgency=low

   * debian/patches/dovecot-MANAGESIEVE-9.3.dpatch: updated managesieve to
     version 9.3.
   * debian/dovecot-common.README.Debian: added a note about how to configure
     dovecot to log to file instead of using syslog.
   * debian/dovecot.1: added a SIGNALS section. (Closes: #479059)
   * dovecot-sieve: updated to the last hg release (5c3ba11994cb).
     (Closes: #479104)

dovecot (1:1.0.13-3) unstable; urgency=low

   * debian/rules: do not install anymore the ldap and sql example
     configuration files under /etc. (Closes: #472674)
   * debian/dovecot-common.postinst: really chmod
     /etc/dovecot/dovecot-{ldap,sql}.conf files to 0600.
   * debian/devecot-common.init: do not start the service if dovecot.conf
     doesn't exist. (Closes: #475888)

dovecot (1:1.0.13-2) unstable; urgency=low

   * debian/rules: use aclocal-1.9 instead of aclocal. (Closes: #473754)

dovecot (1:1.0.13-1) unstable; urgency=high

   * New upstream release, fixes a security issue:
     http://www.dovecot.org/list/dovecot-news/2008-March/000064.html

dovecot (1:1.0.12-1) unstable; urgency=high

   * New upstream release. (Closes: #469457)
   * debian/patches/dovecot-MANAGESIEVE-9.2.dpatch: updated, thanks to Marco
     Nenciarini for the patch.

dovecot (1:1.0.10-4) unstable; urgency=low

   * debian/patches/autocreate.dpatch: added, thanks to Walter Reiner.
   * debian/rules: use --with-ioloop=best instead of --with-ioloop=epoll, as
     suggested by Timo. (Closes: #466296)

dovecot (1:1.0.10-3) unstable; urgency=low

   * debian/patches/dovecot-MANAGESIEVE-9.1.dpatch: added, thanks to Aleksey
     Midenkov for providing a patch. (Closes: #416166)
   * debian/dovecot-common.init: added $time to Should-Start. (Closes: #461543)
   * debian/dovecot-common.postinst: do not add the dovecot user to the mail
     group, it is not required by upstream. (Closes: #457123)
   * debian/control: updated Standards-Version to 3.7.3, no changes required.

dovecot (1:1.0.10-2) unstable; urgency=low

   * debian/patches/mbox_snarf.dpatch: added, thanks to Bernd Kuhls.
     (Closes: #462319)

2007

dovecot (1:1.0.10-1) unstable; urgency=high

   * New upstream release, fixes a security bug.
   * debian/patches/exec_check_for_none.dpatch: updated.

dovecot (1:1.0.9-1) unstable; urgency=low

   * New upstream release.
   * debian/control: added the Vcs-Svn and Vcs-Browser fields.

dovecot (1:1.0.8-2) unstable; urgency=low

   * Provides a dovecot-dev package, thanks to Josh Triplett for providing a
     patch. (Closes: #444812)

dovecot (1:1.0.8-1) unstable; urgency=low

   * New upstream release.
   * debian/patches/unsupported-sasl-mech.dpatch: merged with upstream.

dovecot (1:1.0.7-3) unstable; urgency=low

   * debian/patches/dovecot-ssl.dpatch: provide mechanism to discover if ssl
     client certificate is verified, patch from Stephen Gran. (Closes: #446555)
   * debian/patches/pam-error-information.dpatch: fill auth information in pam
     error, patch backported from upstream RCS. (Closes: #439246)
   * debian/patches/unsupported-sasl-mech.dpatch: should use NO (not BAD) for
     unsupported SASL mech, patch backported from upstream RCS. (Closes: #449324)

dovecot (1:1.0.7-2) unstable; urgency=low

   * debian/dovecot-common.postinst:
     + don't fail if dovecot-ldap.conf or dovecot-sql.conf are removed; thanks
       to Mathias Gug. (Closes: #448401)
     + fix permissions of /var/run/dovecot and /var/run/dovecot/login.
       (Closes: #446051)

dovecot (1:1.0.7-1) unstable; urgency=low

   * New upstream release.
   * debian/rules: remove drac.so in the clean target. (Closes: #442548)
   * debian/dovecot-common.init: implemented the reload action.
     (Closes: #441032)
   * Update protocoles option in configuration when installing/removing
     -imapd/-pop3d packages. Thanks to Soren Hansen and Mathias Gug from
     Ubuntu for providing a patch. (Closes: #447201)

dovecot (1:1.0.5-1) unstable; urgency=low

   * New upstream release.

dovecot (1:1.0.3-3) unstable; urgency=low

   * debian/dovecot-common.init: don't use the init script name to locate the
     configuration file because it is not reliable. If you really want to start
     multiple servers, just copy the init script and use the optional default
     file to override the variables. (Closes: #437228)

dovecot (1:1.0.3-2) unstable; urgency=low

   * debian/rules: removed the --with-notify=inotify switch, it should be
     detected automatically.

dovecot (1:1.0.3-1) unstable; urgency=low

   * New upstream release. (Closes: #434038, #432601)
   * This release doesn't build dbox support out-of-the-box. (Closes: #431615)
   * dovecot-sieve: updated to the last hg's tip. (Closes: #434079)
   * debian/dovecot-*.README.Debian: don't call /etc/init.d scripts directly.
     (Closes: #431991)
   * debian/dovecot-common.init: updated with patches from Tom Metro, thanks!
     (Closes: #426480, #422674)
   * debian/dovecot-common.postinst: fixed a missing variable DOMAINNAME.
     (Closes: #425917)
   * debian/rules: moved the init script to the level 24, after the ntpdate
     one. (Closes: #432723)
   * debian/patches/00list: added dovecot-drac, again. (Closes: #353039)
   * debian/rules: build with inotify and epoll support. (Closes: #419281)
   * debian/dovecot.1: added a simple manpage for dovecot. (Closes: #426702)
   * debian/copyright: added copyright exceptions as suggested by Timo.

dovecot (1:1.0.0-1) unstable; urgency=low

   * New upstream release, the final 1.0.0. Bumped epoch, because we used the
     wrong version scheming in the past and I think it is worth to do so now
     that 1.0.0 has been released.
   * debian/watch: updated.
   * Rebuilt with a new glibc in unstable, now we have inotify support.
     (Closes: #395306)

dovecot (1.0.rc31-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc30-2) unstable; urgency=low

   * debian/dovecot-common.init: check if /etc/inetd.conf exists before
     calling sed on it. (Closes: #417299)

dovecot (1.0.rc30-1) unstable; urgency=low

   * New upstream release.
   *

dovecot (1.0.rc29-1) unstable; urgency=low

   * New upstream release.
   * debian/rules: ship convert-tool in dovecot-common. (Closes: #416909)

dovecot (1.0.rc28-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc27-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc26-4) unstable; urgency=low

   * debian/dovecot-common.postinst: fixed a typo. (Closes: #414672)

dovecot (1.0.rc26-3) unstable; urgency=low

   * debian/control: depends on ucf (>= 2.0020). (Closes: #414032)
   * debian/dovecot-common.postinst: handles better chmod/chown on package
     upgrade. (Closes: #414257)

dovecot (1.0.rc26-2) unstable; urgency=low

   * debian/control:
     + dovecot-{imapd,pop3d}: depends on the same-source dovecot-common.
       (Closes: #414032)
   * debian/rules: fixed permission for dovecot.conf. (Closes: #413995)

dovecot (1.0.rc26-1) unstable; urgency=low

   * New upstream release.
   * Add support for ucf, thanks to Vincent Danjean for providing a full patch.
     (Closes: #413081)
   * debian/dovecot-common.init: create /var/run directories at start-up time.
     (Closes: #376143)

dovecot (1.0.rc25-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc24-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc23-1) unstable; urgency=low

   * New upstream release.
   * debian/patches/documentation.dpatch, debian/patches/xfs_quotas.dpatch:
     removed, applied upstream.

dovecot (1.0.rc22-2) UNRELEASED; urgency=low

   * debian/watch: added.

dovecot (1.0.rc22-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc21-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc19-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc18-2) unstable; urgency=low

   * dovecot-sieve: updated to cvs version 1.0.1.
   * debian/README.Debian: updated for the new setting mail_location, which
     substitutes the old default_mail_env. (Closes: #408025)

dovecot (1.0.rc18-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc17-1) unstable; urgency=low

   * New upstream release.
   * Updated dovecot-sieve from CVS.

2006

dovecot (1.0.rc15-2) unstable; urgency=medium

   * debian/dovecot-common.README.Debian: updated details about raw logging;
     thanks Chris Moore for providing a patch. (Closes: #400689)
   * debian/patches/dovecot-example.dpatch: added a missing slash for an
     absolute path. (Closes: #400830)
   * debian/patches/dovecotpw.dpatch: applied patched to fix argument parsing
     on some architectures. (Closes: #402075)

dovecot (1.0.rc15-1) unstable; urgency=medium

   * New upstream release.
   * Fixes a security bug: Off-by-one buffer overflow with mmap_disable=yes.
     (See: http://www.dovecot.org/list/dovecot-news/2006-November/000023.html)

dovecot (1.0.rc14-1) unstable; urgency=medium

   * New upstream release.

dovecot (1.0.rc13-1) unstable; urgency=medium

   * New upstream release.
   * debian/rules:
     + preserve upstream config.guess and config.sub. (Closes: #397404)
     + really clean dovecot-sieve/src on clean target. (Closes: #397407)
   * debian/control: added build-conflict with automake1.4. (Closes: #397409)
   * dovecot-sieve/src/Makefile.am: move sieve plug-ins under
     usr/lib/dovecot/lda/modules; thanks to Chris Vanden Berghe for pointing
     this out.

dovecot (1.0.rc12-1) unstable; urgency=low

   * New upstream release.

dovecot (1.0.rc10-3) unstable; urgency=medium

   * debian/rules: fixed two typos in the configure call. (Closes: #395016)
   * Included dovecot-sieve plug-in from CVS. (Closes: #394885)
   * Urgency medium: we are near the freeze, and this release must be part
     of etch.

dovecot (1.0.rc10-2) unstable; urgency=low

   * debian/patches/dovecot-example.dpatch: commented out a close brace.
     (Closes: #394785)

dovecot (1.0.rc10-1) unstable; urgency=low

   * New upstream release. (Closes: #393004)
   * debian/patches/dovecot-example.dpatch:
     + added specific comments to the mail_extra_groups option.
       (Closes: #383453)
     + removed duplicated LDA section. (Closes: #391632)
   * debian/dovecot.8: fixed a layout error. (Closes: #393080)
   * debian/dovecot-common.init: added LSB headers.
   * Switched to the upstream dovecot deliver (LDA).
   * debian/patches/quota_v2.dpatch: added, thanks to Jonas Smedegaard.
     (Closes: #377563)

dovecot (1.0.rc7-1) unstable; urgency=low

   * New upstream release. (Closes: #377840, #385101)
   * debian/patches/dovecot-example.dpatch: set a default value for
     pop3_uidl_format. (Closes: #383883)

dovecot (1.0.rc6-1) unstable; urgency=low

   * New upstream release:
     + Fixed imap segfaults on small mbox files (2 bytes). (Closes: #377840)
     + Fixed a known bug in dovecot's IDLE handler. (Closes: #351828)
     + Added support for quota2. (Closes: #377563)
   * debian/control: converted build-depends on linux-kernel-headers to
     build-conflicts to help the GNU/kFreeBSD port. (Closes: #377479)
   * debian/control: changed maintainer to "Dovecot Maintainers"; no changes
     to the email addresses.

dovecot (1.0.rc2-2) unstable; urgency=low

   * patched the quota plugin to fix a missing symbol (Closes: #377018)

dovecot (1.0.rc2-1) unstable; urgency=high

   * New upstream release
   * Update dovecot-lda to the latest version (05132006)
   * IPv6 with SSL/TLS should work now.  (Closes: #374783)
   * go back to using poll instead of epoll.  (Closes: #376222)

dovecot (1.0.rc1-1) unstable; urgency=low

   * New upstream release.
   * Add a build-dependency on linux-kernel-headers for the xfs quotas
     stuff.  Make it higher than the version in sarge because sarges xfs
     includes are too old.  If any knowledgeable person would like to
     give me a patch for this, please do.  (Closes: #374793)

dovecot (1.0.beta9-1) unstable; urgency=low

   * New upstream release
   * Added XFS quota support.  Thanks  Pawel Jarosz <pj@rsi.pl>
     (Closes: #373936)

dovecot (1.0.beta8-4) unstable; urgency=high

   * Unfortunately, the patch in the last version broke the mysql module.
     Fixed thanks to Martin Pitt.  (Closes: #369359, #373227)

dovecot (1.0.beta8-3) unstable; urgency=high

   * [SECURITY] SQL injection could occur in the postgresql module with
     certain client character encodings. (See CVE-2006-2314)
     Used the patch from upstream and Martin Pitt <martin.pitt@ubuntu.com>.
     Thanks Martin.  (Closes: #369359)

dovecot (1.0.beta8-2) unstable; urgency=high

   * Don't chown/chmod ssl certificate unless we created it.
     (Closes: #364766)
   * Upstream fixed the crash if passwd-file had entries without passwords.
     (Closes: #361536)
   * fixed up the last versions changelog to better describe the security
     problem which was fixed there.

dovecot (1.0.beta8-1) unstable; urgency=high

   * New upstream release.
   * [SECURITY] Fixes a directory traversal vulnerability.
     (see: http://www.dovecot.org/list/dovecot-news/2006-May/000006.html
     and CVE-2006-2414)
   * Set urgency to high: this version fixes a security bug
   * Standards-Version: 3.7.2, no changes needed.

dovecot (1.0.beta7-1) unstable; urgency=low

   * New upstream version.
   * Added sqlite support.

dovecot (1.0.beta5-1) unstable; urgency=low

   * New upstream version.  Also updated dovecot-lda from CVS.
   * debian/control.  Added build-depends on flex to prevent FTBS.

dovecot (1.0.beta3-3) unstable; urgency=low

   * Compile against the newer mysql library. (Closes: #356729)

dovecot (1.0.beta3-2) unstable; urgency=low

   [Fabio Tranchitella]
   * debian/control: added build-depends on byacc.
   * debian/rules: removed --with-vpopmail option, because libvpopmail-dev
     is in contrib and we don't wanto to have dovecot build-depends on it.
   * debian/patches/dovecot-example.dpatch: added two small commented
     block of configuration for dovecot-lda.

dovecot (1.0.beta3-1) unstable; urgency=high

   [Fabio Tranchitella]
   * New upstream release, which fixes two security related bugs.
     CVE-2006-0730 (Closes: #353341)
   * Included dovecot-lda (ver. 20060209). (Closes: #353307, #347348, #333962)
 
   [ Jaldhar H. Vyas ]
   * Removed the code for upgrading impad.pem.  This might bite if you if
     you try and upgrade a woody version of dovecot to this one.  So
     don't do that.  (Closes: #337715)
   * dovecot-imapd,dovecot-pop3d: depend on dovecot-common >= 1.0beta3-1
     as the way SSL parameters are generated has changed.  (Closes: #353404)

dovecot (1.0.beta2-1) unstable; urgency=low

   [Fabio Tranchitella]
   * New upstream release.
   * debian/rules: compile with vpopmail support. (Closes: #347838)
   * debian/patches: removed zlib patch (merged with upstream).

2005

dovecot (1.0.alpha5-1) unstable; urgency=low

   [Fabio Tranchitella]
   * New upstream release.
   * Compile dovecot with Kerberos support. (Closes: #338384)
   * Fixed a small typo in mbox specification. (Closes: #339789)
   * Added man page for maildirmake.dovecot, thanks to Henry Precheur.
     (Closes: #340498)
   * Use /usr/lib/dovecot/modules as basedir for dynamic modules.
     Upstream suggests /usr/lib/dovecot, but we already use it as
     libexec directory.

dovecot (1.0.alpha4-1) unstable; urgency=low

   [Jaldhar H. Vyas]
   * New upstream version.
   * Made sure the default dovecot.conf includes mail_extra_groups=mail
     (Closes: #336476) somehow this edit got lost at some point.
   * use ISO8601 date format as default value for log_timestamp in
     /etc/dovecot/dovecot.conf  (Closes: #333059)
   * stop shipping {arch} directories in source (Closes: #334646)
   * Include plugin for compressed mboxen (Closes: #332384)
   * updated NEWS.Debian to warn users that the dovecot.conf syntax has
     changed (Closes: #334209)
   * Remember, remember, the 5th of November.

dovecot (1.0.alpha3-2) unstable; urgency=low

   [Jaldhar H. Vyas]
   * dovecot-common: When creating the dovecot user in the postinst,
     the --ingroup option to adduser to add dovecot to group
     mail isn't used anymore.
     (Closes: #330960, #331106)
   * commented out userdb passdb from default configuration.  Most
     people won't need that. (Closes: #330978)

dovecot (1.0.alpha3-1) unstable; urgency=low

   [ Fabio Tranchitella ]
   * New upstream release (dovecot-1.0.alpha.3)
   * debian/patches/ipv6_v6only.dpatch: removed, upstream accepted it.
   * debian/dovecot-common.postinst: removed bashisms.
   * debian/dovecot-common.postinst: add dovecot user to group mail.
     (Closes: #323921)
   * debian/control: removed conflicts with imap-server and pop3-server,
     added replaces instead. (Closes: #324480)
   [ Jaldhar H. Vyas ]
   * No longer crashes when using LDAP as userdb/passdb (Closes: #320388)

dovecot (0.99.20050712-2) unstable; urgency=low

   * Fabio Tranchitella <kobold@debian.org>
     + debian/control: dovecot-common has to depend on adduser.
     + debian/patches/documentation.dpatch: some cosmetic fixes about mysql
       backend.
   * Jaldhar H. Vyas <jaldhar@debian.org>
     + debian/control: tighten dovecot-imapd and dovecot-pop3d's dependency on
       dovecot-common (Closes: #319465)
     + debian/patches/dovecot-example.dpatch: some more fixes to default
       configuration.  (Closes: #319413, #319941)

dovecot (0.99.20050712-1) unstable; urgency=low

   * Fabio Tranchitella <kobold@debian.org>
     + New upstream version (dovecot-stable, last update 20050712).
       (Closes: #312893)
     + debian/control: Standards-Version: 3.6.2 (no changes needed).
     + debian/patches/dovecot-sql.dpatch: use the right path for mysql socket.
       (Closes: #298874)
   * Jaldhar H. Vyas <jaldhar@debian.org>
     + Removed dovecot package as it was just a woody->sarge transitional
       pseudo-package.
     + Apply patch to debian/dovecot-common.init to help when manually
       starting dovecot.  Thanks Roland Stigge.  (Closes: #309679)
     + Apply patch to src/lib/network.c to support IPV6_V6ONLY.  Thanks
       Marco D'Itri. (Closes: #308652)
     + depend on the latest postgresql library.

dovecot (0.99.14-1) unstable; urgency=low

   * New upstream version.
   * dovecot-common: another postinst regexp fix for SSL cert/key files.
     (Closes: #294989)

dovecot (0.99.13-6) unstable; urgency=high

   * dovecot-common: sigh another init script fix.  Hopefully we now
     fully deal with dovecot being run from inetd.  Thanks again to Magnus
     Holmgren.  (Closes: #293348)
   * High again so -5 doesn't get into sarge.

dovecot (0.99.13-5) unstable; urgency=high

   * dovecot-common: typo in postinst resulted in incorrect generation of
     keys for first-time installers.  Hence urgency high.
   * dovecot-common: In init script, make extra check to make sure an
     IMAP or POP3 server called from inetd is dovecot and not some other
     random inferior product.  (Closes: #293348)

dovecot (0.99.13-4) unstable; urgency=low

   * build depend on libmysqlclient12
   * dovecot-common: Allow STARTTLS to work when dovecot is run from inetd
     Thanks Magnus Holmgren (Closes: #290985)
   * dovecot-common: let init script exit if dovecot is being run from inetd
     Thanks Magnus Holmgren (Closes: #292195)
   * dovecot-common: fix a number of problems in postinst
     + fails if /etc/ssl/certs or /etc/ssl/private doesn't exist
     + certs cannot be generated and upgrade fails if openssl is not
       configured.  Fail more gracefully if this is the case.
     + read the name and path for the cert from dovecot.conf instead of
       hardcoding it.
       Thanks Frederic Pauget (Closes: #292344)

dovecot (0.99.13-3) unstable; urgency=high

   * Oops -2 had to be urgency=high so -1 doesn't get into sarge.

dovecot (0.99.13-2) unstable; urgency=low

   * dovecot-imapd, dovecot-pop3d:  It occurred to me that the effects of
     fixing #288391 will cause confusion in the minds of new installers so I
     should add a warning in README.Debian and NEWS.Debian in a vain
     effort to stave off swarms of bug reports.  (Vain, because no one
     actually reads documentation anyway.)

dovecot (0.99.13-1) unstable; urgency=high

   * New upstream version.
   * dovecot-imapd, dovecot-pop3d: No longer mess with dovecot.conf in postinst
     (Closes: #288391)
   * urgency high due to #288391 being a release-critical bug.

2004

dovecot (0.99.12-1) unstable; urgency=low

   * New upstream version.  (Yes I know 0.99.13 is just around the corner.)
   * SASL is reenabled so this bug ("Dovecot seems not to require SASL")
     is no longer valid (Closes: #272093)
   * Configuration files moved to /etc/dovecot (Closes: #276183)
   * Permissions on /var/run/dovecot and /var/run/dovecot/login no longer
     give warnings. (Closes: #283996)
   * SSL certificate is world readable (Closes: #277114).
   * Thanks to Jan Buren, much extra documentation has been added to
     /usr/share/doc/dovecot-common/README.Debian
   * Lintian overrides added.
   * Happy new year to all you Gregorians

dovecot (0.99.11-3) unstable; urgency=medium

   * applied dovecot-large-header-fix patch to prevent 100% CPU
     utilization when dealing with really large headers.
     (Closes: #271458)

dovecot (0.99.11-2) unstable; urgency=low

   * Eliminated duplicate stanza in dovecot.conf (Closes: #270181)
   * Reapplied CRAM-MD5 patch.

dovecot (0.99.11-1) unstable; urgency=low

   * New upstream release.
   * patch to give bug reporting address in configure.ac.
     Thanks Matthias Andree.

dovecot (0.99.10.9-2) unstable; urgency=low

   * screw mipsel.
   * Added PAM_RHOST patch.  Thanks Dean Gaudet.  (Closes: #264712)
   * Added CRAM-MD5 patch.  Thanks Joshua Goodall.
   * Added unexpected EOF patch from Timo.

dovecot (0.99.10.9-1) unstable; urgency=low

   * New upstream release.

dovecot (0.99.10.8-1) unstable; urgency=low

   * New upstream release.

dovecot (0.99.10.7-1) unstable; urgency=low

   * New upstream release.

dovecot (0.99.10.6-3) unstable; urgency=low

   * Patched so dovecot follows symlinks to directories again.
     (Closes: #256061)
   * Changed the priority of init script so it is run after postgresql
     (Closes: #256068)

dovecot (0.99.10.6-2) unstable; urgency=high

   * I needed to enable one more parameter in the configuration in order
     to get dot-locking working.  Hence this should still be high urgency.
     (Really Closes: #185335)

dovecot (0.99.10.6-1) unstable; urgency=high

   * New upstream version.
     + finally fixes dot-locking so I think it deserves high priority for
       sarge.  (Closes: #185335)
   * dovecot: fixed a typo in description (Closes: #254415)
   * dovecot-common: man page for dovecot added.  Thanks Kai Hendry.
     (Closes: #253482)

dovecot (0.99.10.5-4) unstable; urgency=high

   * Crap, typo in dovecot-common.postinst sorry.  This should only
     affect new installs though.

dovecot (0.99.10.5-3) unstable; urgency=high

   * SECURITY:  set permissions on config files to 0600 to prevent
     disclosure of sensitive information to local users. (Closes: #253760)
   * SECURITY: Tightened permissions on generated SSL certificate.
     (Closes: #253833)
   * Made a note that dovecot-openssl.conf is not needed on Debian
     because we generate a certificate in dovecot-commons' postinst.
     (Closes: #253774)
   * Added maildir-autocreate patch.

dovecot (0.99.10.5-2) unstable; urgency=low

   * Added maildir-stat patch.

dovecot (0.99.10.5-1) unstable; urgency=low

   * New upstream version.
   * Enabled mysql support.

dovecot (0.99.10.4-5) unstable; urgency=high

   * Switched to using openssl as dovecot segfaults with gnutls7 and is
     not compatible with gnutls10 (Closes: #244570)

dovecot (0.99.10.4-4) unstable; urgency=low

   * Added a patch to src/auth/db-pgsql.c from Zsolt VARGA.

dovecot (0.99.10.4-3) unstable; urgency=high

   * dovecot-common: Fix postinst to no longer delete /etc/pam.d/imap
     (Closes: #232832)

2003

dovecot (0.99.10.4-2) unstable; urgency=low

   * dovecot-common: now replaces: dovecot for smoother upgrades.
     (Closes: #223666)

dovecot (0.99.10.4-1) unstable; urgency=low

   * New upstream version
     + This fixes the curruption of .subscriptions files wth folders in
       maildir format. (Closes: #222272)
   * Some extra information included in dovecot-common.README.Debian.
     (Closes: #221106)  There should probaly be more so if you have ideas
     let me know.

dovecot (0.99.10.2-1) unstable; urgency=low

   * New upstream version.

dovecot (0.99.10-11) unstable; urgency=low

   * Build depend on gnutls 7 instead of 5 (Closes: #219523)

dovecot (0.99.10-10) unstable; urgency=low

   * maildirmake.dovecot will now let you create maildirs whose names
    have spaces in them and chown them to a specified user.  Thanks Paul
    Slootman (Closes: #219168)

dovecot (0.99.10-9) unstable; urgency=low

   * Don't use SASL2 as upstream says the support is broken.

dovecot (0.99.10-8) unstable; urgency=low

   * Patched so suid works on 2.6 kernels.  Thanks Peter Gervai.
     (Closes: #211420)

dovecot (0.99.10-7) unstable; urgency=low

   * Yet another init script fix.  It should be ok now.  Thanks once again
     to Alexis Iglauer.

dovecot (0.99.10-6) unstable; urgency=low

   * fix some errors in init script (closes: #207464)
     Thanks to Adam Lackorzynski and Alexis Iglauer.

dovecot (0.99.10-5) unstable; urgency=high

   * dovecot-pop3d, dovecot-imapd: make sure init script doesn't
     attempt to start the daemons if unconfigured thus preventing
     segfault on startup.  (Closes: #206992, #207140)

dovecot (0.99.10-4) unstable; urgency=low

   * Updated PAM configuration to the new scheme and added appropriate
     dependency.

dovecot (0.99.10-3) unstable; urgency=low

   * dovecot-pop3d: Patch for proper PAM service name.
   * dovecot-imapd, dovecot-pop3d: Make sure there is an appropriate
     entry in the protocol = line in /etc/dovecot.conf so the service
     will start up without errors. (Closes: #204213)

dovecot (0.99.10-2.1) unstable; urgency=low

   * Non-maintainer upload at request of maintainer.
   * Fix segfault on alpha caused by time_t size. Closes: #203892.
   * Fix segfault when user's home directory is left empty.

dovecot (0.99.10-2) unstable; urgency=low

   * corrected paths to example and configuration files in sample config
     (Closes: #199740)
   * Added postgresql support.

dovecot (0.99.10-1) unstable; urgency=low

   * New upstream release.
   * PAM service name has changed to dovecot (for IMAP and POP3.)  I've included
     code to move /etc/pam.d/imap to /etc/pam.d/dovecot but if things suddenly
     stop working, this is the first thing to check.

dovecot (0.99.10-0.rc2) unstable; urgency=low

   * New upstream release.  Fixes broken imaps support.
   * Typo in configure options that broke LDAP support on woody corrected.
   * Only start /usr/sbin/dovecot if either the IMAP or POP3 servers are
     installed. (Closes: #192066)

dovecot (0.99.9.1-1) unstable; urgency=low

   * New upstream release.

dovecot (0.99.9-1) unstable; urgency=low

   * New upstream release.
   * The IMAP and POP3 servers have been split into seperate package so you
     don't have to install both.  There is also a dovecot-common package
     for the parts they share.  The dovecot package is now a dummy just for
     transitioning to this new scheme.  (Closes: #187826)
   * Allow chmod in maildirmake.dovecot to fail gracefully (Closes: #191244)

dovecot (0.99.8.1-4) unstable; urgency=low

   * Added a build-depends on libsasl-dev (Closes: #187516)
   * Enabled pop3 service.  However it is still turned off in the config file by
     default so as to not surprise anyone who thought they only had an IMAP
     server.
   * Consequently, changed "IMAP server" in descriptions etc. to "mail server".
   * only skip key generation if both /etc/ssl/certs/dovecot.pem and
     /etc/ssl/private/dovecot.pem exist.  (Closes: #187638)
   * post-0.99.8.1 patch: Fix renaming subfolders with maildir.
   * post-0.99.8.1 patch: Fix other maildir subfolder problems.
   * post-0.99.8.1 patch: Fix partial body fetches.
   * post-0.99.8.1 patch: Fix using LITERAL+APPEND.

dovecot (0.99.8.1-3) unstable; urgency=low

   * Fixed bashism and perlism(!) in maildirmake.dovecot.  Thanks Clint
     Adams. (Closes: #185768)
   * Enabled LDAP support.  The configuration is in /etc/dovecot-ldap.conf
     but is commented out.
   * Happy new year to all Debian users still on the Julian calendar.

dovecot (0.99.8.1-2) unstable; urgency=low

   * Make a seperate check for /etc/ssl/private/imapd.pem in case we don't
     have it. (Closes: #185334)
   * Move check for dovecot user and creation code to postinsts' configure
     phase. (Closes: #185333)

dovecot (0.99.8.1-1) unstable; urgency=low

   * new upstream release.  (Closes: #184131)  Does not include the POP3
     server or LDAP and SASL support for now so we can get into the archive
     quickly.  Fixes segfaults in imap-master (Closes: #184231)  Fixes
     faulty mail autodetection presets (Closes: #179625)

dovecot (0.99.7-4) unstable; urgency=low

   * Fixed location of handlers. (Closes: #179273)

dovecot (0.99.7-3) unstable; urgency=low

   * doh pam file should be called imap not dovecot (Closes: #179180)

dovecot (0.99.7-2) unstable; urgency=low

   * Added two upstream patches to fix broken plain authentication and
     building with vpopmail support (which is not enabled in the Debian
     package yet.)

dovecot (0.99.7-1) unstable; urgency=low

   * New upstream release.
   * Syslog no longer fills up with entries when dovecot is misconfigured.
     (Closes: #175507)
   * startup is logged now. shutdowns were already logged. (Closes: #175509)
   * dovecot will not remove your SSL certificates now.  (Closes: #175282)

dovecot (0.99.6rc2-1) unstable; urgency=low

   * New upstream release.
   * Includes patch which stops dovecot from dying on alpha (Closes: #175577)

dovecot (0.99.5-1) unstable; urgency=low

   * New upstream release with many fixes and improvements.

2002

dovecot (0.99.4-1) unstable; urgency=low

   * Initial Release.