Thomas Bruederli
f06aa8058b
Bump version after security fix
11 years ago
Aleksander Machniak
eb433aa33c
Fix vulnerability in handling _session argument of utils/save-prefs ( #1489382 )
...
Conflicts:
CHANGELOG
program/lib/Roundcube/rcube_plugin_api.php
program/steps/utils/save_pref.inc
11 years ago
Aleksander Machniak
7b1e818fdd
Update changelog
11 years ago
Thomas Bruederli
217694ebe5
Bump version for 0.8.6 release
11 years ago
Thomas Bruederli
a8ca51718b
Sanity check the file path for generic message footer before adding it
11 years ago
Aleksander Machniak
e1d9b4824c
Whitelist configuration options (user preferences) that can be changed using save-pref command
...
Conflicts:
program/lib/Roundcube/rcube_plugin.php
program/lib/Roundcube/rcube_plugin_api.php
11 years ago
Thomas Bruederli
d05808a1f9
Properly quote form validation error messages
11 years ago
Thomas Bruederli
c433a1bfb1
Bump version to 0.8.5
12 years ago
Thomas Bruederli
f7c50e28db
Merge branch 'release-0.8' of github.com:roundcube/roundcubemail into release-0.8
12 years ago
Thomas Bruederli
00a6b75622
Fix logo display in IE8 ( #1488889 )
12 years ago
Thomas Bruederli
be6ef85978
Mark mime_magic option with old default value as obsolete
...
Conflicts:
installer/rcube_install.php
12 years ago
Thomas Bruederli
5845b25027
Avoid direct execution of installer includes ( #1488895 )
12 years ago
Aleksander Machniak
941f8b5aff
Fix #countcontrols issue in IE<=8 when text is very long ( #1488890 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
c3a3531b36
Fix escaping of add-contact arguments - fixes JS error in IE
12 years ago
Aleksander Machniak
3a0e4d9150
Fix unwanted horizontal scrollbar in message preview header ( #1488866 )
...
Conflicts:
CHANGELOG
skins/larry/mail.css
12 years ago
Aleksander Machniak
4163511314
Add workaround for IE<=8 bug where Content-Disposition:inline was ignored ( #1488844 )
12 years ago
Aleksander Machniak
9019025222
- Fix XSS vulnerability in vbscript: and data:text links handling ( #1488850 )
...
Conflicts:
CHANGELOG
tests/MailFunc.php
12 years ago
Thomas Bruederli
39f883e1f9
Unset mime-magic location in order to let PHP use the default location
12 years ago
Thomas Bruederli
ac88dc8d09
Don't open application/x-shockwave-flash files in browser (quick fix for XSS reported in #148882 )
12 years ago
Aleksander Machniak
caffe4d317
Fix deleting of collapsed threads, broken in 2b55d4f420
( #1488772 )
12 years ago
Aleksander Machniak
c516e3a701
Fix redundant colon after last address in print mode
12 years ago
Aleksander Machniak
bc4a6a2711
Fix absolute positioning in HTML messages ( #1488819 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
4e10778caf
Fix selection of collapsed thread rows ( #1488772 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
a0682b56d1
Fix wrapping of quoted text with format=flowed ( #1488177 )
...
Conflicts:
CHANGELOG
program/include/rcube_mime.php
12 years ago
Aleksander Machniak
77c9fd9f25
Fix cache (in)validation after setting \Deleted flag
12 years ago
Aleksander Machniak
a96db0f928
Fix keybord events on messages list in opera browser ( #1488823 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
ca68d75d1e
Update
12 years ago
Aleksander Machniak
e91f482593
Update versions list with 0.8.4 release
12 years ago
Aleksander Machniak
41de5f5ec6
Fix wrong (non-specific) error message on crypt or connection error ( #1488808 )
12 years ago
Aleksander Machniak
e13ad37d89
Fix XSS vulnerability in handling of text/enriched messages ( #1488806 )
12 years ago
Thomas Bruederli
76cee1c4e1
Bump version to 0.8.4
12 years ago
Aleksander Machniak
289b000d25
Set error_reporting
12 years ago
Aleksander Machniak
6a1cf52045
Fix handling of 'media' attribute on linked css ( #1488789 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
af18b5b06f
Fix regression where unintentional page reload was done after request abort ( #1488802 )
12 years ago
Aleksander Machniak
a38cd0f12a
Fix excessive LFs at the end of composed message with top_posting=true ( #1488797 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
ac0c8537ad
Add 0.8.3 to the list of releases
12 years ago
Aleksander Machniak
08c39127d3
Fix bug where leading blanks were stripped from quoted lines ( #1488795 )
...
Conflicts:
CHANGELOG
12 years ago
Thomas Bruederli
f6f1fd0251
Bump version to 0.8.3
12 years ago
Aleksander Machniak
a92582f3b8
Fix AREA links handling ( #1488792 )
...
Conflicts:
CHANGELOG
12 years ago
Aleksander Machniak
4f72978af3
Fixed rcube_imap_generic::uncompressMessageSet() result when argument is empty. Added tests.
...
Conflicts:
tests/Framework/ImapGeneric.php
12 years ago
Thomas Bruederli
79f1c6f809
Fix count display after inserting a new contact
12 years ago
Thomas B.
a2c586093e
Merge pull request #41 from linagora/release-0.8
...
Grancefully handle SSO redirects on Ajax requests
12 years ago
Aleksander Machniak
752eedd964
Fix possible HTTP DoS on error in keep-alive requests ( #1488782 )
...
Conflicts:
CHANGELOG
12 years ago
jkornobis
d2d00c510b
Grancefully handle SSO redirections on Ajax requests
...
On some SSO systems, when the SSO session is expired,
the system intercept HTTP requests and send a 302 "Found" HTTP code to the login page.
This patch handle this case in Roundcube Ajax requests, to redirect to the SSO login page.
Note that request.status don't have the 302 code (at least on Firefox), so we have to check the response headers for a Location field and redirect manually.
12 years ago
Aleksander Machniak
72e7eb826d
Update changelog
12 years ago
Aleksander Machniak
76a48a8490
Merge pull request #40 from remicollet/track-1488779
...
fix call to MDB2::isError for MDB2 2.5.0b4
12 years ago
Remi Collet
96f8436d77
fix call to MDB2::isError for MDB2 2.5.0b4
12 years ago
Aleksander Machniak
fd49626c2b
Add deprecated alias clear_mailbox()
12 years ago
Thomas Bruederli
e92a89d2c2
Convert all identity headers into the desired message charset
12 years ago
Aleksander Machniak
e29922bb54
Fix a bug where saving a message in INBOX wasn't possible
12 years ago