--- rpms/mailman/contribs8/mailman.spec	2013/07/02 20:11:40	1.1
+++ rpms/mailman/contribs8/mailman.spec	2013/07/12 21:04:22	1.2
@@ -1,49 +1,44 @@
-# $Id: mailman.spec,v 1.4 2008/11/25 16:20:13 slords Exp $
-# Authority: gordonr
-# Name: Gordon Rowell
-
 Summary: Mailing list manager with built in Web access.
 Name: mailman
-Version: 2.1.5.1
-Release: 34.rhel4.6%{?dist}
+Version: 2.1.9
+Release: 6%{?dist}.1
 Epoch: 3
 Group: Applications/Internet
-Source0: ftp://ftp.gnu.org/pub/gnu/mailman/mailman-%{version}.tgz
+#Source0: ftp://ftp.gnu.org/pub/gnu/mailman/mailman-%{version}.tgz
+Source0: http://prdownloads.sourceforge.net/mailman/mailman-%{version}.tgz
 Source1: mm_cfg.py
 Source3: httpd-mailman.conf
 Source4: mailman.logrotate
 Source5: mailman.INSTALL.REDHAT.in
 Source6: mailman-crontab-edit
 Source7: mailman-migrate-fhs
-Patch0: mailman-2.1-config.patch
+# Mailman uses its own email module and to fix #461707 there has to be
+# _parseaddr.py from that tarball patched. Therefore there is patched tarball
+# included as separate source and used as replacement of the original tarball.
+Source8: email-2.5.8.tar.gz
 Patch1: mailman-2.1-multimail.patch
-#Patch2: mailman-2.1-permissions.patch
 Patch2: mailman-2.1-build.patch
 Patch3: mailman-2.1-mailmanctl-status.patch
-Patch4: mailman-2.1.5-moderator-request.patch
-Patch5: mailman-cron.patch
-Patch6: mailman-FHS.patch
-Patch7: mailman-python-compile.patch
-Patch8: mailman-2.1-CAN-2005-0202.patch
-Patch9: mailman-2.1-CAN-2004-1177.patch
-Patch10: mailman-2.1.5-date_overflows.patch
-Patch11: mailman-2.1.5-date_overflows-post.patch
-Patch12: mailman-2.1-CVE-2006-0052.patch
-Patch13: mailman-2.1-CVE-2006-2941.patch
-Patch14: mailman-2.1.5.1-get_filename.patch
-Patch15: mailman-2.1-CVE-2006-3636.patch
-Patch16: mailman-2.1.5.1-spamflt.patch
-Patch17: mailman-2.1.5.1-cancel.patch
-Patch18: mailman-2.1.5.1-CVE-2006-4624.patch
-Patch19: mailman-2.1.5.1-init.patch
+Patch4: mailman-cron.patch
+Patch5: mailman-FHS.patch
+Patch6: mailman-python-compile.patch
+Patch7: mailman-init.patch
+Patch8: mailman-archive-reply.patch
+Patch9: mailman-2.1.9-init-directrun.patch
+Patch10: mailman-init-retval.patch
+Patch11: mailman-2.1.9-broken-queue.patch
+Patch12: mailman-2.1.9-shebang.patch
+Patch13: mailman-2.1.9-global-address-change.patch
+Patch14: mailman-2.1.9-CVE-2008-0564.patch
+Patch15: mailman-2.1.9-CVE-2010-3089.patch
+Patch16: mailman-2.1.9-CVE-2011-0707.patch
 
 License: GPL
 URL: http://www.list.org/
-BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root
+BuildRoot: %{_tmppath}/%{name}-root
 Prereq: shadow-utils, /sbin/chkconfig, /sbin/service
-Requires: vixie-cron >= 4.1-9, webserver, python >= 2.2, mktemp
-BuildPrereq: python-devel >= 2.2
-BuildRequires: automake
+Requires: vixie-cron >= 4.1-9, httpd, python >= 2.2, mktemp
+BuildRequires: python-devel >= 2.2, automake
 
 %define contentdir /var/www
 
@@ -58,15 +53,16 @@ BuildRequires: automake
 %define piddir /var/run/%{name}
 %define queuedir /var/spool/%{name}
 %define httpdconfdir /etc/httpd/conf.d
-%define restart_flag %{lockdir}/restart-after-rpm-install
+%define restart_flag /var/run/%{name}-restart-after-rpm-install
+%define mmbuilddir %{_builddir}/%{name}-%{version}
 
 %define httpdconffile %{name}.conf
 
 # Now, the user and group the CGIs will expect to be run under.  This should
 # match the user and group the web server is configured to run as.  The scripts
 # will error out if they are invoked by any other user.
-%define cgiuser    www
-%define cgigroup   www
+%define cgiuser    apache
+%define cgigroup   apache
 
 # Now, the user and group the scripts will actually execute as.
 %define mmuser       mailman
@@ -101,34 +97,28 @@ additional installation steps, these are
 %{docdir}/INSTALL.REDHAT
 
 %prep
-%setup -q 
-#%patch0 -p1 -b .config
+%setup -q
 %patch1 -p1 -b .multimail
 %patch2 -p1 -b .permissions
 %patch3 -p1 -b .status
-%patch4 -p0 -b .moderator-request
-%patch5 -p1 -b .cron
-%patch6 -p1 -b .FHS
-%patch7 -p1 -b .python-compile
-%patch8 -p1 -b .CAN-2005-0202
-%patch9 -p1 -b .CAN-2004-1177
-%patch10 -p1 -b .CVE-2005-3573
-%patch12 -p1 -b .CVE-2006-0052
-%patch13 -p1 -b .CVE-2006-2941
-%patch14 -p1 -b .get_filename
-%patch15 -p1 -b .CVE-2006-3636
-%patch16 -p1 -b .spamflt
-%patch17 -p1 -b .cancel
-%patch18 -p1 -b .CVE-2006-4624
-%patch19 -p1 -b .retval
-cp $RPM_SOURCE_DIR/mailman.INSTALL.REDHAT.in INSTALL.REDHAT.in
+%patch4 -p1 -b .cron
+%patch5 -p1 -b .FHS
+%patch6 -p1 -b .python-compile
+%patch7 -p1 -b .inithelp
+%patch8 -p1 -b .archive-in-reply-to
+%patch9 -p1 -b .init-direct-run
+%patch10 -p1 -b .init-retval
+%patch11 -p1 -b .broken-queue
+%patch12 -p1 -b .shebang
+%patch13 -b .global-address-change
+%patch14 -b .CVE-2008-0564
+%patch15 -b .CVE-2010-3089
+%patch16 -b .CVE-2011-0707
 
-pushd misc
-tar xzf email-2.5.5.tar.gz
-popd
-
-%patch11 -p1 -b .CVE-2005-3573-2
+# Replaces original email-2.5.8.tar.gz with the patched one
+cp %{SOURCE8} misc/email-2.5.8.tar.gz
 
+cp $RPM_SOURCE_DIR/mailman.INSTALL.REDHAT.in INSTALL.REDHAT.in
 
 %build
 
@@ -203,7 +193,7 @@ cp $RPM_BUILD_ROOT/%{mmdir}/icons/* $RPM
 
 # Create a link to the wrapper in /etc/smrsh to allow sendmail to run it.
 mkdir -p $RPM_BUILD_ROOT/etc/smrsh
-ln -s %{mmdir}/mail/%{mail_wrapper} $RPM_BUILD_ROOT/etc/smrsh
+ln -s ../..%{mmdir}/mail/%{mail_wrapper} $RPM_BUILD_ROOT/etc/smrsh
 
 # Create a link so that the config file mm_cfg.py appears in config
 # directory /etc/mailman. We don't put mm_cfg.py in the config directory
@@ -225,39 +215,30 @@ ln -s %{configdir}/sitelist.cfg $RPM_BUI
 
 # Install a logrotate control file.
 mkdir -p $RPM_BUILD_ROOT/etc/logrotate.d
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/mailman.logrotate $RPM_BUILD_ROOT/etc/logrotate.d/%{name}
+install -m644 %{mmbuilddir}/mailman.logrotate $RPM_BUILD_ROOT/etc/logrotate.d/%{name}
 
 # Install the httpd configuration file.
 install -m755 -d $RPM_BUILD_ROOT%{httpdconfdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/httpd-mailman.conf $RPM_BUILD_ROOT%{httpdconfdir}/%{httpdconffile}
+install -m644 %{mmbuilddir}/httpd-mailman.conf $RPM_BUILD_ROOT%{httpdconfdir}/%{httpdconffile}
 
 # Install the documentation files
 install -m755 -d $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/INSTALL.REDHAT   $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/ACKNOWLEDGMENTS  $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/FAQ              $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/NEWS             $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README           $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.BSD       $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.CONTRIB   $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.EXIM      $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README-I18N.en   $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.LINUX     $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.MACOSX    $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.NETSCAPE  $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.POSTFIX   $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.QMAIL     $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.SENDMAIL  $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/README.USERAGENT $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/STYLEGUIDE.txt   $RPM_BUILD_ROOT%{docdir}
-install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/UPGRADING        $RPM_BUILD_ROOT%{docdir}
-
-install -m755 -d $RPM_BUILD_ROOT%{docdir}/contrib
-for i in `ls $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/contrib`
-do
-  install -m644 $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/contrib/$i $RPM_BUILD_ROOT%{docdir}/contrib
-done
+install -m644 %{mmbuilddir}/INSTALL.REDHAT   $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/ACKNOWLEDGMENTS  $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/FAQ              $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/NEWS             $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/README           $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/README.CONTRIB   $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/README-I18N.en   $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/README.NETSCAPE  $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/README.USERAGENT $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/STYLEGUIDE.txt   $RPM_BUILD_ROOT%{docdir}
+install -m644 %{mmbuilddir}/UPGRADING        $RPM_BUILD_ROOT%{docdir}
+
+cp -r %{mmbuilddir}/contrib $RPM_BUILD_ROOT%{docdir}
 install -m644 $RPM_SOURCE_DIR/mailman-migrate-fhs $RPM_BUILD_ROOT%{docdir}/contrib/migrate-fhs
+install -m755 -d $RPM_BUILD_ROOT%{docdir}/admin
+cp -r %{mmbuilddir}/admin/www $RPM_BUILD_ROOT%{docdir}/admin
 
 # remove dir/files from $RPM_BUILD_ROOT that we aren't shipping
 rm -rf $RPM_BUILD_ROOT%{varmmdir}/icons
@@ -330,9 +311,8 @@ fi
 exit 0
 
 %postun
-
 if [ $1 = 0 ]; then
-  crontab -u %{mmuser} -r
+  crontab -u %{mmuser} -r 2>/dev/null
 fi
 # rpm should not abort if last command run had non-zero exit status, exit cleanly
 exit 0
@@ -369,53 +349,95 @@ exit 0
 %attr(0644,root,%{mmgroup}) %config(noreplace) %{mmdir}/cron/crontab.in
 
 %changelog
-* Sun Apr 20 2008 Shad L. Lords <slords@mail.com> 3:2.1.5.1-34.rhel4.6.sme
-- Clean up spec so package can be built by koji/plague
-- SME Server apache runs as www:www, not apache:apache [SME: 92]
-- TODO: Can we do this with just an SME Server mailman binary?
-
-* Mon Jul 30 2007 Tomas Smetana <tsmetana@redhat.com> - 3:2.1.5.1-34.rhel4.6
-- fix #200036 - canceling subscription confirmation crashes mailman
-- fix #205651 - CVE-2006-4624 logfile CRLF injection
-- fix #230939 - missing migrate-fhs script
-- fix #223191 - spam filters gets deleted when sender filter is edited
-- fix #242677 - wrong init script
-
-* Wed Aug 23 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.5.1-34.rhel4.5
-- fixed CVE-2006-3636 (bug #198344)
-
-* Wed Jul 26 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.5.1-34.rhel4.4
-- added patches to fix CVE-2006-2941 (bug #198344)
-
-* Thu May 09 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.5.1-34.rhel4.3
-- fix for bug #187420 (CVE-2006-0052 Mailman DoS)
-
-* Tue Mar 02 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.5.1-34.rhel4.2
-- fixed fix for CVE-2005-3573
-
-* Tue Feb 21 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.5.1-34.rhel4.1
-- removed pseudo virus file from tarball
-- removed migration script for new FHS installation
+* Mon Feb 21 2011 Jan Kaluza <jkaluza@redhat.com> - 3:2.1.9-6.1
+- fix #677845 - fixed CVE-2008-0564, CVE-2010-3089 and CVE-2011-0707
+
+* Thu Sep 23 2010 Jan Kaluza <jkaluza@redhat.com> - 3:2.1.9-6
+- fix #521888 - fix instances of #!/usr/bin/env python in mailman-migrate-fhs
+
+* Mon Sep 13 2010 Jan Kaluza <jkaluza@redhat.com> - 3:2.1.9-5
+- fix #290661 - use relative symlink in /etc/smrsh
+- fix #461707 - break CC field correctly
+- fix #453377 - don't parse problematic mails many times, but isolate them
+- fix #521888 - fix instances of #!/usr/bin/env python in mailman
+- fix #515157 - fixed traceback when changing email address globally
+
+* Wed Jan 23 2008 Tomas Smetana <tsmetana@redhat.com> - 3:2.1.9-4
+- fix #252185 init script prevents proper SELinux domain transitions
+- fix #242672 wrong init script return value
+
+* Thu Oct 05 2006 David Woodhouse <dwmw2@redhat.com> - 3:2.1.9-3
+- fix broken In-Reply-To: header in mailto: URL in archives (#123768)
+
+* Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 3:2.1.9-2
+- rebuilt for unwind info generation, broken in gcc-4.1.1-21
+
+* Mon Sep 25 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.9-1
+- updated to mailman-2.1.9 which fixes bug #206607
+
+* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 3:2.1.8-3.1
+- rebuild
 
-* Mon Dec 12 2005 Harald Hoyer <harald@redhat.com> - 3:2.1.5-34.rhel4.1
+* Tue Jun 27 2006 Florian La Roche <laroche@redhat.com> - 3:2.1.8-3
+- quieten postun of crontab removal
+
+* Mon Jun 12 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.8-2
+- more build requirements
+
+* Mon May 08 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.8-1
+- version 2.1.8
+
+* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 3:2.1.7-1.2
+- bump again for double-long bug on ppc(64)
+
+* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 3:2.1.7-1.1
+- rebuilt for new gcc4.1 snapshot and glibc changes
+
+* Tue Jan 10 2006 Harald Hoyer <harald@redhat.com> - 3:2.1.7-1
+- version 2.1.7
+
+* Fri Dec 16 2005 Jesse Keating <jkeating@redhat.com>
+- rebuilt for new gcj
+
+* Wed Dec 14 2005 Harald Hoyer <harald@redhat.com> - 3:2.1.5-36.fc4.1
 - fix for bug #173139 (CVE-2005-3573 Mailman Denial of Service)
-- fix for bug #176089 (CVE-2005-4153 Mailman Denial of Service)
 
-* Wed Mar  2 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-34.rhel4
+* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
+- rebuilt
+
+* Thu Nov 10 2005 Harald Hoyer <harald@redhat.com> - 3:2.1.6-2
+- added help to the initscript (bug #162724)
+
+* Wed Jun  8 2005 John Dennis <jdennis@redhat.com> - 3:2.1.6-1.fc4
+- initial port of 2.1.6
+  remove mailman-2.1.5-moderator-request.patch, present in new release
+  remove mailman-2.1-CAN-2005-0202.patch,       present in new release
+  remove mailman-2.1-CAN-2004-1177.patch,       present in new release
+
+* Thu Apr 28 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-36.fc4
+- fix bug #156159 insecure location of restart flag file
+
+* Mon Mar  7 2005 John Dennis <jdennis@redhat.com> 3:2.1.5-35.fc4
+- bump rev for gcc4 build
+
+* Wed Mar  2 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-34.fc4
 - fix bug #150065, provide migration script for new FHS installation
 
-* Fri Feb 25 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-33.rhel4
+* Fri Feb 25 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-33.fc4
 - fix bug #147833, CAN-2004-1177
 
-* Tue Feb 15 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-32.rhel4
+* Mon Feb 14 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-31.fc4
 - fix bug #132750, add daemon to mail-gid so courier mail server will work.
 - fix bug #143008, wrong location of mailmanctl in logrotate
 - fix bug #142605, init script doesn't use /var/lock/subsys
 
-* Wed Feb  9 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-31.rhel4
+* Tue Feb  8 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-30.fc4
+- fix release tag
+
+* Tue Feb  8 2005 John Dennis <jdennis@redhat.com> - 3:2.1.5-29
 - fix security vulnerability CAN-2005-0202, errata RHSA-2005:137, bug #147344
 
-* Tue Nov  9 2004 John Dennis <jdennis@redhat.com> 3:2.1.5-30.rhel4
+* Tue Nov  9 2004 John Dennis <jdennis@redhat.com> 3:2.1.5-28
 - fix bug #137863, buildroot path in .pyc files
 
 * Sat Oct 16 2004 John Dennis <jdennis@redhat.com> 3:2.1.5-26