Commit Graph

2284 Commits (06c5a2033105074109282d2a88d760789f9a8370)

Author SHA1 Message Date
Aleksander Machniak 55ebae3c1e Fix bug where bold/strong text was converted to upper-case on html-to-text conversion (6758) 6 years ago
Aleksander Machniak de25226d31 Enigma: Fix "decryption oracle" bug [CVE-2019-10740] (#6638)
When composing mail (on reply/forward/edit) we decrypt content only
in the first "content part" of the message.
6 years ago
Aleksander Machniak f8afd18713 Enigma: Fix error message when trying to encrypt with a revoked private key (#6607) 6 years ago
Aleksander Machniak 0c828a254e Enigma: Fix bug where revoked users/keys were not greyed out in key info
The 'deleted' class was assigned to the wrong (next) row in a table.
It also didn't work in Elastic skin at all because of the missing style.
6 years ago
Aleksander Machniak 8b706775f3 Fix bug in parsing vCard data using PHP 7.3 due to an invalid regexp (#6744)
Looks like \R is not allowed in character class, but \r\n is fine.
On PHP 7.3.5 it throws warnings and empty result from preg_replace(),
though I couldn't reproduce.
6 years ago
Aleksander Machniak 9cb1912553 Fix bug where bmp images couldn't be displayed on some systems (#6728) 6 years ago
Aleksander Machniak 02631baf9e Managesieve: Fix so "Create filter" option does not show up when Filters menu is disabled (#6723) 6 years ago
Aleksander Machniak 7b8a183e9f Bump version to 1.3.9 6 years ago
Aleksander Machniak 0bf17668b6 Fix TinyMCE download location (#6694) 6 years ago
Aleksander Machniak 27b9448d6c Fix bug where next row wasn't selected after deleting a collapsed thread (#6655) 6 years ago
Aleksander Machniak 1dbf187a45 Fix bug when aborting dragging with ESC key didn't stop the move action (#6623)
+ small code improvements
+ focus the list on drag start to make sure it's focused state is up-to-date
  which is needed for proper keypress handling (e.g. ESC key on drag action)
6 years ago
Aleksander Machniak 5b6b1133dc Update changelog 6 years ago
Aleksander Machniak 52d80f2467 Fix so mime_content_type check in Installer uses files that should always be available (i.e. from program/resources) (#6599) 6 years ago
Aleksander Machniak 1d7b488841 Fix so ANY record is not used for email domain validation, use A, MX, CNAME, AAAA instead (#6581) 6 years ago
Aleksander Machniak b7b2afc6be Fix PHP 7.2 compatibility in debug_logger plugin (#6586) 6 years ago
Aleksander Machniak 1418812c89 Fix bug in parsing some IMAP command responses that include unsolicited replies (#6577) 6 years ago
Aleksander Machniak 8dec8fb60a Fix handling of empty entries in vCard import (#6564) 6 years ago
Aleksander Machniak 4619f030f2 Fix bug where a message/rfc822 part without a filename wasn't listed on the attachments list (#6494) 6 years ago
Thomas Bruederli b1a8a4b627 Bump version to 1.3.8 6 years ago
Aleksander Machniak a34a206b60 Fix session issue on long running requests (#6470) 6 years ago
Aleksander Machniak b11a0ed4d4 Update changelog 6 years ago
Aleksander Machniak c22c177e53 Fix bug where valid content between HTML comments could have been skipped in some cases (#6464) 6 years ago
Aleksander Machniak d310ee5bf4 Update changelog 6 years ago
Aleksander Machniak 4303c59467 New_user_identity: Fix %fu/%u vars substitution in user specific LDAP params (#6419) 6 years ago
Aleksander Machniak 0304f7c75b Managesieve: Fix bug where show_real_foldernames setting wasn't respected (#6422) 6 years ago
Aleksander Machniak 2e9a60efea Fix compatibility with MySQL 8 - error on 'system' table use 6 years ago
Aleksander Machniak 4671d5cb88 Fix typo 6 years ago
Aleksander Machniak 102fbf1169 Fix CSS issue in handling invalid style tag content (#6410) 6 years ago
Aleksander Machniak 017819df00 Fix so Classic skin splitter does not escape out of window (#6397) 6 years ago
Aleksander Machniak 8b6da9a65a Fix invalid regular expressions that throw warnings on PHP 7.3 (#6398) 6 years ago
Aleksander Machniak 3087c25cb6 Enigma: Fix deleting keys with authentication subkeys (#6381) 6 years ago
Aleksander Machniak d8a1f99db9 Fix so fallback from BINARY to BODY FETCH is used also on [PARSE] errors in dovecot 2.3 (#6383) 6 years ago
Aleksander Machniak a411d8cb87 Fix PHP warnings on dummy QUOTA responses in Courier-IMAP 4.17.1 (#6374) 6 years ago
Thomas Bruederli 9f79a7ae6f Bump version to 1.3.7 6 years ago
Aleksander Machniak 2e3648b24f Fix bug where some HTML comments could have been malformed by HTML parser (#6333) 7 years ago
Aleksander Machniak 94da947855 [EFAIL] Don't decrypt PGP messages with no MDC protection (#6289) 7 years ago
Aleksander Machniak e5050f8087 Fix bug where after "mark all folders as read" action message counters were not reset (#6307)
also fixed one PHP 7.2 warning
7 years ago
Aleksander Machniak e8de88ac74 Fix bug where unicode contact names could have been broken/emptied or caused DB errors (#6299) 7 years ago
Aleksander Machniak a4cae4e8a2 Update changelog 7 years ago
Aleksander Machniak 16b5a345e0 Fix bug where some forbidden characters on Cyrus-IMAP were not prevented from use in folder names
Conflicts:
	plugins/archive/archive.php
7 years ago
Aleksander Machniak d9eed3625b Fix bug where some escape sequences in html styles could bypass security checks 7 years ago
Aleksander Machniak 13b35e3c0e Update changelog 7 years ago
Aleksander Machniak 8477b881e5 Fix PHP Warning: Use of undefined constant IDNA_DEFAULT on systems without php-intl (#6244) 7 years ago
Thomas Bruederli 357f9380c3 Bump version to 1.3.6 7 years ago
Aleksander Machniak 175c9359cb Enigma: Enable keypair generation on Internet Explorer 11 7 years ago
Aleksander Machniak c278b8796f Fix bug where usernames without domain part could be malformed or converted to lower-case on logon (#6224) 7 years ago
Aleksander Machniak e3dd5b66d2 Fix check_request() bypass in places using get_uids() [CVE-2018-9846] (#6238) 7 years ago
Aleksander Machniak ad628a9bef Enigma: Fix key selection for signing
In some cases a public key of other user could be selected instead
of the sender's private key
7 years ago
Aleksander Machniak 77d447ff7c Fix possible IMAP command injection and type juggling vulnerabilities (#6229) 7 years ago
Aleksander Machniak 9efd534fe1 Fix PHP 7.2: count(): Parameter must be an array in enchant-based spellchecker (#6234) 7 years ago