Commit Graph

9538 Commits (06c5a2033105074109282d2a88d760789f9a8370)
 

Author SHA1 Message Date
Aleksander Machniak 94da947855 [EFAIL] Don't decrypt PGP messages with no MDC protection (#6289) 7 years ago
Aleksander Machniak e5050f8087 Fix bug where after "mark all folders as read" action message counters were not reset (#6307)
also fixed one PHP 7.2 warning
7 years ago
Aleksander Machniak e8de88ac74 Fix bug where unicode contact names could have been broken/emptied or caused DB errors (#6299) 7 years ago
Aleksander Machniak 53f93944c0 Merge branch 'release-1.3' of github.com:roundcube/roundcubemail into release-1.3 7 years ago
Aleksander Machniak a4cae4e8a2 Update changelog 7 years ago
Caio Nardi e4cee31a54 Fix checking duplicated names in the zip file (#6302) 7 years ago
Aleksander Machniak 5f444885b8 Use array() instead of [] 7 years ago
Aleksander Machniak 16b5a345e0 Fix bug where some forbidden characters on Cyrus-IMAP were not prevented from use in folder names
Conflicts:
	plugins/archive/archive.php
7 years ago
Aleksander Machniak 616e130bc4 Add sanity check when auto-unsubscribing non-existing folders 7 years ago
Aleksander Machniak d9eed3625b Fix bug where some escape sequences in html styles could bypass security checks 7 years ago
Aleksander Machniak 13b35e3c0e Update changelog 7 years ago
Edgaras L 7dfbb62b78 Parse all quotas from GETQUOTAROOT (#6280) 7 years ago
Aleksander Machniak 8477b881e5 Fix PHP Warning: Use of undefined constant IDNA_DEFAULT on systems without php-intl (#6244) 7 years ago
Thomas Bruederli 357f9380c3 Bump version to 1.3.6 7 years ago
Aleksander Machniak 175c9359cb Enigma: Enable keypair generation on Internet Explorer 11 7 years ago
Aleksander Machniak c278b8796f Fix bug where usernames without domain part could be malformed or converted to lower-case on logon (#6224) 7 years ago
Aleksander Machniak e3dd5b66d2 Fix check_request() bypass in places using get_uids() [CVE-2018-9846] (#6238) 7 years ago
Aleksander Machniak dc9c9c36a8 Fix regression in compressMessageSet() (#6235) 7 years ago
Aleksander Machniak e57c66f0d3 Enigma: Add positiblity to modify list of identities for key generation by other plugins 7 years ago
Aleksander Machniak ad628a9bef Enigma: Fix key selection for signing
In some cases a public key of other user could be selected instead
of the sender's private key
7 years ago
Aleksander Machniak 77d447ff7c Fix possible IMAP command injection and type juggling vulnerabilities (#6229) 7 years ago
Aleksander Machniak 9efd534fe1 Fix PHP 7.2: count(): Parameter must be an array in enchant-based spellchecker (#6234) 7 years ago
Aleksander Machniak 60902de521 Fix parsing date strings (e.g. from a Date: mail header) with comments (#6216) 7 years ago
Thomas Bruederli 8922e3e076 Bump version to 1.3.5 7 years ago
Thomas Bruederli cf6b20437c Remove deprecated composer package 'endroid/qrcode' on update 7 years ago
Aleksander Machniak f55724d1e8 Fix bug where some unix timestamps were not handled correctly by rcube_utils::anytodatetime() (#6212) 7 years ago
Aleksander Machniak e5b7bcd207 Fix handling encoding of HTML tags in "inline" JSON output (#6207) 7 years ago
Aleksander Machniak 8565b51059 Added 9pt and 11pt to the list of font sizes in HTML editor 7 years ago
johndoh dda4ec3dca Update composer reference to endroid/qr-code (#6132) 7 years ago
Aleksander Machniak b8e51b9d2f Remove redundant trim() 7 years ago
Aleksander Machniak 39146a90bc Change wording 7 years ago
Aleksander Machniak 24dcdb5414 Fix bug in remote content blocking on HTML image and style tags (#6178) 7 years ago
Aleksander Machniak fb791f3302 Enigma: Fix key generation in Safari by upgrade to OpenPGP 2.6.2 (#6149) 7 years ago
Aleksander Machniak 96f792c1f2 Fix PHP Warning: exif_read_data(...): Illegal IFD size (#6169) 7 years ago
Aleksander Machniak 2240d43985 Fix duplicated labels in Test SMTP Config section (#6166) 7 years ago
Aleksander Machniak 96cee7cd92 Update changelog 7 years ago
Jan Ehrhardt db83952247 Fix seteditraw classic save button (#6164)
Fixes https://github.com/roundcube/roundcubemail/issues/6154
7 years ago
Aleksander Machniak 369fedf313 Fix bug where text: syntax was forced for strings longer than 1024 characters (#6143) 7 years ago
Aleksander Machniak 78d896d469 Fix PHP 7.2 warning: count(): Parameter must be an array or an object that implements Countable 7 years ago
Aleksander Machniak a4de40566d Validate ACL identifiers
... e.g. to prevent cyrus imap issues
7 years ago
Thomas Bruederli fefbd00cd6 Include recent fixes in 1.3.4 release 7 years ago
Aleksander Machniak 0f06f58e52 Fix possible information leak - add more strict sql error check on user creation (#6125) 7 years ago
Aleksander Machniak 2eeb2c75df Fix bug where contacts search could skip some records (#6130)
Conflicts:
	CHANGELOG
7 years ago
Thomas Bruederli 917ae1c199 Bump version to 1.3.4 7 years ago
Aleksander Machniak 6fb6a0b885 Update localization 7 years ago
Aleksander Machniak f9c590621b Remove x_frame_options env 7 years ago
Aleksander Machniak 65da434867 Fix X-Frame-Options:ALLOW-FROM support, remove custom click-jacking protection (#6057) 7 years ago
Richard Hillmann b9c038ca63 Fix preg_match in guess_type function (#6123) 7 years ago
Aleksander Machniak 55ba350102 - Fix searching contacts by address in LDAP source (#6084) 7 years ago
Aleksander Machniak d15c6872cb Fix PHP 7.2: count(): Parameter must be an array or an object that implements Countable (#6098) 7 years ago