Revisions of roundcubemail
Dirk Stoecker (dstoecker)
accepted
request 1149846
from
Dominique Leuenberger (dimstar)
(revision 172)
Prepare for RPM 4.20
Lars Vogdt (lrupp)
committed
(revision 171)
- update to 1.6.6 * Fix regression in handling LDAP search_fields configuration parameter (#9210) * Enigma: Fix finding of a private key when decrypting a message using GnuPG v2.3 * Fix page jump menu flickering on click (#9196) * Update to TinyMCE 5.10.9 security release (#9228) * Fix PHP8 warnings (#9235, #9238, #9242, #9306) * Fix saving other encryption settings besides enigma's (#9240) * Fix unneeded php command use in installto.sh and deluser.sh scripts (#9237) * Fix TinyMCE localization installation (#9266) * Fix bug where trailing non-ascii characters in email addresses could have been removed in recipient input (#9257) * Fix IMAP GETMETADATA command with options - RFC5464
Lars Vogdt (lrupp)
committed
(revision 170)
preview/download CVE-2023-47272
Lars Vogdt (lrupp)
committed
(revision 169)
Other changes * Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE (#9171) * Fix duplicated Inbox folder on IMAP servers that do not use Inbox folder with all capital letters (#9166) * Fix PHP warnings (#9174) * Fix UI issue when dealing with an invalid managesieve_default_headers value (#9175) * Fix bug where images attached to application/smil messages weren't displayed (#8870) * Fix PHP string replacement error in utils/error.php (#9185) * Fix regression where smtp_user did not allow pre/post strings before/after %u placeholder (#9162)
Lars Vogdt (lrupp)
committed
(revision 168)
- update to 1.6.5 (bsc#1216895) * Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download
Lars Vogdt (lrupp)
committed
(revision 167)
Lars Vogdt (lrupp)
committed
(revision 166)
- update to 1.6.4 * Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168) * Fix PHP8 warnings (#9142, #9160) * Fix default 'mime.types' path on Windows (#9113) * Managesieve: Fix javascript error when relational or spamtest extension is not enabled (#9139)
Lars Vogdt (lrupp)
committed
(revision 165)
- update to 1.6.3 (bsc#1215433) * Fix bug where installto.sh/update.sh scripts were removing some essential options from the config file (#9051) * Update jQuery-UI to version 1.13.2 (#9041) * Fix regression that broke use_secure_urls feature (#9052) * Fix potential PHP fatal error when opening a message with message/rfc822 part (#8953) * Fix bug where a duplicate <title> tag in HTML email could cause some parts being cut off (#9029) * Fix bug where a list of folders could have been sorted incorrectly (#9057) * Fix regression where LDAP addressbook 'filter' option was ignored (#9061) * Fix wrong order of a multi-folder search result when sorting by size (#9065) * Fix so install/update scripts do not require PEAR (#9037) * Fix regression where some mail parts could have been decoded incorrectly, or not at all (#9096) * Fix handling of an error case in Cyrus IMAP BINARY FETCH, fallback to non-binary FETCH (#9097) * Fix PHP8 deprecation warning in the reconnect plugin (#9083) * Fix "Show source" on mobile with x_frame_options = deny (#9084) * Fix various PHP warnings (#9098) * Fix deprecated use of ldap_connect() in password's ldap_simple driver (#9060) * Fix cross-site scripting (XSS) vulnerability in handling of linkrefs in plain text messages
Lars Vogdt (lrupp)
accepted
request 1096557
from
Lars Vogdt (lrupp)
(revision 164)
- update to 1.6.2 * Add Uyghur localization * Fix regression in OAuth request URI caused by use of REQUEST_URI instead of SCRIPT_NAME as a default (#8878) * Fix bug where false attachment reminder was displayed on HTML mail with inline images (#8885) * Fix bug where a non-ASCII character in app.js could cause error in javascript engine (#8894) * Fix JWT decoding with url safe base64 schema (#8890) * Fix bug where .wav instead of .mp3 file was used for the new mail notification in Firefox (#8895) * Fix PHP8 warning (#8891) * Fix support for Windows-31J charset (#8869) * Fix so LDAP VLV option is disabled by default as documented (#8833) * Fix so an email address with name is supported as input to the managesieve notify :from parameter (#8918) * Fix Help plugin menu (#8898) * Fix invalid onclick handler on the logo image when using non-array skin_logo setting (#8933) * Fix duplicate recipients in "To" and "Cc" on reply (#8912) * Fix bug where it wasn't possible to scroll lists by clicking middle mouse button (#8942) * Fix bug where label text in a single-input dialog could be partially invisible in some locales (#8905) * Fix bug where LDAP (fulltext) search didn't work without 'search_fields' in config (#8874) * Fix extra leading newlines in plain text converted from HTML (#8973) * Fix so recipients with a domain ending with .s are allowed (#8854) * Fix so vCard output does not contain non-standard/redundant TYPE=OTHER and TYPE=INTERNET (#8838)
Lars Vogdt (lrupp)
committed
(revision 163)
- update to 1.6.1 * Kill session if refreshing oauth token fails (#8734) * Fix various PHP 8.1 warnings (#8628, #8644, #8667, #8656, #8647) * Password: Remove references to %c variable that has been removed before (#8633) * Fix anchor links in HTML mail (#8632) * Fix bug where config creation in Installer did ignore options in the form (#8634) * Fix bug where renamed options were removed from the config on installto.sh (update.sh) run (#8643) * Fix favicon rewrite rule in .htaccess (#8654) * Fix various PHP 8.2 warnings * Fix bug where it wasn't possible to create more than one response record on SQLite and Postgres (#8664) * Fix support for ManageSieve over implicit SSL (#8670) * Fix bug where "about:blank" page could trigger "load error" (#8554) * Fix bug where setting 'Clear Trash on Logout' to 'all messages' didn't work (#8687) * Fix bug where the attachment menu wouldn't disappear after an action is selected (#8691) * Fix bug where some dialogs in an eml attachment preview would not close on mobile (#8627) * Fix bug where multiline data:image URI's in emails were stripped from the message on display (#8613) * Fix fatal error on identity page if Enigma plugin is misconfigured (#8719) * Fix so N property always exists in a vCard export (#8771) * Fix authenticating to Courier IMAP with passwords containing a '~' character (#8772) * Fix handling of smtp/imap port options on configuration file update (#8756) * Fix bug where array values could not be saved in utils/save_pref action (#8781)
Dirk Stoecker (dstoecker)
accepted
request 991611
from
Michael Ströder (stroeder)
(revision 162)
- update to 1.6.0 with these most noteworthy changes: * PHP 8.1 support * Dropped support for PHP < 7.3 * Support responses (snippets) in HTML format * Option to purge deleted mails older than 30, 60 or 90 days * Unified and simplified services connection config options * Removed the Classic and Larry skins from the release packages * SQLite: Use foreign keys, require SQLite >= 3.6.19
Lars Vogdt (lrupp)
accepted
request 985175
from
Michael Ströder (stroeder)
(revision 161)
update to 1.5.3
Lars Vogdt (lrupp)
accepted
request 946501
from
Matthias Pfafferodt (syntron)
(revision 160)
The roundcube-framework is move to /usr/share/php/Roundcube. However, as it is still included from the old position, roundcube fails to load it (see /srv/www/roundcubemail/program/include/iniset.php - definition of $include_path in line 47 and include call for the framework in line 74). My solution: add a symbolic link to the new position.
Lars Vogdt (lrupp)
accepted
request 943309
from
Michael Ströder (stroeder)
(revision 159)
update to 1.5.2
Lars Vogdt (lrupp)
committed
(revision 158)
Lars Vogdt (lrupp)
committed
(revision 157)
- use the virtual provides from each PHP module, to allow the installation of roundcubemail with various PHP version. The only problem, we are currently facing is the automatic enablement of the PHP apache module during post-installation. Trying to evaluate the correct PHP module now during post as well, which should eleminate the pre-definition of the required PHP-Version during build completely. See https://build.opensuse.org/request/show/940859 for the initial discussion.
Dirk Stoecker (dstoecker)
accepted
request 934432
from
Michael Ströder (stroeder)
(revision 156)
update to 1.5.1
Lars Vogdt (lrupp)
committed
(revision 155)
- adjust requirements: php-intl is now required
Lars Vogdt (lrupp)
committed
(revision 154)
- update to 1.5.0 + full PHP8 support + Dark mode for Elastic skin + OAuth2/XOauth support (with plugin hooks) + Collected recipients and trusted senders + Moving recipients between inputs with drag & drop + Full unicode support with MySQL database + Support of IMAP LITERAL- extension RFC 7888 <https://datatracker.ietf.org/doc/html/rfc7888> + Support of RFC 2231 <https://datatracker.ietf.org/doc/html/rfc2231> encoded names + Cache refactoring More at https://github.com/roundcube/roundcubemail/releases/tag/1.5.0 - adjusted some file names to new release (_styles.less -> styles.less; _variables.less -> variables.less; CHANGELOG -> CHANGELOG.md) - vendor/roundcube/plugin-installer/src/bin/rcubeinitdb.sh does not exist any longer - added SECURITY.md to documentation - mark the whole documentation directory as documentation instead of listing some files and others not (avoid duplicate entries in RPM-DB)
Lars Vogdt (lrupp)
accepted
request 870350
from
Michael Ströder (stroeder)
(revision 153)
- update to 1.4.11 with security fix: Fix cross-site scripting (XSS) via HTML messages with malicious CSS content
Displaying revisions 1 - 20 of 172