Commit Graph

2249 Commits (0b05cf932885a22d1fd010734c2c75d981825b31)

Author SHA1 Message Date
Aleksander Machniak 94da947855 [EFAIL] Don't decrypt PGP messages with no MDC protection (#6289) 7 years ago
Aleksander Machniak e5050f8087 Fix bug where after "mark all folders as read" action message counters were not reset (#6307)
also fixed one PHP 7.2 warning
7 years ago
Aleksander Machniak e8de88ac74 Fix bug where unicode contact names could have been broken/emptied or caused DB errors (#6299) 7 years ago
Aleksander Machniak a4cae4e8a2 Update changelog 7 years ago
Aleksander Machniak 16b5a345e0 Fix bug where some forbidden characters on Cyrus-IMAP were not prevented from use in folder names
Conflicts:
	plugins/archive/archive.php
7 years ago
Aleksander Machniak d9eed3625b Fix bug where some escape sequences in html styles could bypass security checks 7 years ago
Aleksander Machniak 13b35e3c0e Update changelog 7 years ago
Aleksander Machniak 8477b881e5 Fix PHP Warning: Use of undefined constant IDNA_DEFAULT on systems without php-intl (#6244) 7 years ago
Thomas Bruederli 357f9380c3 Bump version to 1.3.6 7 years ago
Aleksander Machniak 175c9359cb Enigma: Enable keypair generation on Internet Explorer 11 7 years ago
Aleksander Machniak c278b8796f Fix bug where usernames without domain part could be malformed or converted to lower-case on logon (#6224) 7 years ago
Aleksander Machniak e3dd5b66d2 Fix check_request() bypass in places using get_uids() [CVE-2018-9846] (#6238) 7 years ago
Aleksander Machniak ad628a9bef Enigma: Fix key selection for signing
In some cases a public key of other user could be selected instead
of the sender's private key
7 years ago
Aleksander Machniak 77d447ff7c Fix possible IMAP command injection and type juggling vulnerabilities (#6229) 7 years ago
Aleksander Machniak 9efd534fe1 Fix PHP 7.2: count(): Parameter must be an array in enchant-based spellchecker (#6234) 7 years ago
Aleksander Machniak 60902de521 Fix parsing date strings (e.g. from a Date: mail header) with comments (#6216) 7 years ago
Thomas Bruederli 8922e3e076 Bump version to 1.3.5 7 years ago
Aleksander Machniak f55724d1e8 Fix bug where some unix timestamps were not handled correctly by rcube_utils::anytodatetime() (#6212) 7 years ago
Aleksander Machniak e5b7bcd207 Fix handling encoding of HTML tags in "inline" JSON output (#6207) 7 years ago
Aleksander Machniak 8565b51059 Added 9pt and 11pt to the list of font sizes in HTML editor 7 years ago
Aleksander Machniak 39146a90bc Change wording 7 years ago
Aleksander Machniak 24dcdb5414 Fix bug in remote content blocking on HTML image and style tags (#6178) 7 years ago
Aleksander Machniak fb791f3302 Enigma: Fix key generation in Safari by upgrade to OpenPGP 2.6.2 (#6149) 7 years ago
Aleksander Machniak 96f792c1f2 Fix PHP Warning: exif_read_data(...): Illegal IFD size (#6169) 7 years ago
Aleksander Machniak 2240d43985 Fix duplicated labels in Test SMTP Config section (#6166) 7 years ago
Aleksander Machniak 96cee7cd92 Update changelog 7 years ago
Aleksander Machniak 369fedf313 Fix bug where text: syntax was forced for strings longer than 1024 characters (#6143) 7 years ago
Thomas Bruederli fefbd00cd6 Include recent fixes in 1.3.4 release 7 years ago
Aleksander Machniak 0f06f58e52 Fix possible information leak - add more strict sql error check on user creation (#6125) 7 years ago
Aleksander Machniak 2eeb2c75df Fix bug where contacts search could skip some records (#6130)
Conflicts:
	CHANGELOG
7 years ago
Thomas Bruederli 917ae1c199 Bump version to 1.3.4 7 years ago
Aleksander Machniak 65da434867 Fix X-Frame-Options:ALLOW-FROM support, remove custom click-jacking protection (#6057) 7 years ago
Aleksander Machniak 55ba350102 - Fix searching contacts by address in LDAP source (#6084) 7 years ago
Aleksander Machniak 9c542f9cf9 Fix PHP 7.2 Warning: count(): Parameter must be an array or an object that implements Countable 7 years ago
Aleksander Machniak 1c10231b26 Fix bug where contacts export by selection returned no more than 10 entries (#6103) 7 years ago
Aleksander Machniak 0c0e46a2c6 Fix syntax error in mssql.initial.sql (#6097) 7 years ago
Aleksander Machniak 472e48ff0d Fix possible performance issue when parsing malformed and long Date header (#6087) 7 years ago
Aleksander Machniak d1327024cc Fix bug where Archive folder wasn't auto-created on login with create_default_folders=true 7 years ago
Aleksander Machniak a315f2b16d Fix PHP warning "idn_to_utf8(): INTL_IDNA_VARIANT_2003 is deprecated" with PHP 7.2 (#6075) 7 years ago
Aleksander Machniak 1765e855c9 Fix untagged COPYUID responses handling - again (#5982) 7 years ago
Aleksander Machniak 471f6a81f3 Fix so temp_dir misconfiguration prints an error to the log (#6045) 7 years ago
Aleksander Machniak 7c3669c918 Update changelog 7 years ago
Aleksander Machniak 0c56b5d4c0 Fix broken long filenames when using imap4d server - workaround server bug (#6048) 7 years ago
Thomas Bruederli d84391d2c8 Bump version + add CVE ID 7 years ago
Aleksander Machniak 46faac4a6e Fix mangled non-ASCII characters in links in HTML messages (#6028) 7 years ago
Aleksander Machniak 3b439ec920 Update changelog 7 years ago
Aleksander Machniak 581fab9d84 Update changelog 7 years ago
Aleksander Machniak a9170f652c Fix decoding of mailto: links with + character in HTML messages (#6020) 7 years ago
Thomas Bruederli 392f88afc1 Bump version to 1.3.2 7 years ago
Aleksander Machniak 46fe227565 Update changelog 7 years ago