aaafe8f917
Fix check_request() bypass in plugins using get_uids() ( #6238 )
...
[CVE-2018-9846]
7 years ago
498ff0a283
Fix possible IMAP command injection vulnerability ( #6229 )
...
[CVE-2018-9846]
7 years ago
5d889cca13
Fix bug in remote content blocking on HTML image and style tags ( #6178 )
7 years ago
a5e4578482
Don't ignore (global) userlogins/sendmail logs in per_user_logging mode
7 years ago
7f992eac3d
Bump version + add CVE ID
7 years ago
b707e19f4b
Update changelog
7 years ago
4181f29608
Bump version to 1.1.9
8 years ago
24902b7fc3
Add CVE ident
8 years ago
10b227d70a
Password: Fix security issue in virtualmin and sasl drivers
8 years ago
bcdba37a82
Fix bug where base_dn setting was ignored inside group_filters ( #5720 )
8 years ago
6b16e0d593
Fix regression in LDAP fuzzy search where it always used prefix search instead ( #5713 )
8 years ago
f1483204c7
Bump version to 1.1.8
8 years ago
9b5eee2946
Fix XSS issue in handling of a style tag inside of an svg element
8 years ago
6c6b299d2a
Fix so microseconds macro (u) in log_date_format works ( #1490446 )
8 years ago
4cd090aa24
Fix regression where groups with email address were resolved to its members' addresses
8 years ago
f8e0e1d4ed
Fix bug where signature couldn't be added above the quote in Firefox 51 ( #5628 )
8 years ago
72975042a5
Fix bug where mail content frame couldn't be reset in some corner cases ( #5608 )
...
Conflicts:
CHANGELOG
8 years ago
e6132dda95
Fix so group/addressbook selection is retained on page refresh
8 years ago
4c1394cf2d
Bump version to 1.1.7
8 years ago
45a3e81653
Fix vulnerability in handling of mail()'s 5th argument
8 years ago
802d119153
Bump version to 1.1.6
8 years ago
32ddcfd3d0
Fix error causing empty INBOX listing in Firefox when using an URL with user:password specified ( #5400 )
8 years ago
264dfbbf82
Update changelog
8 years ago
4fa70856b9
Fix handling of blockquote tags with mixed case on html2text conversion ( #5363 )
...
Conflicts:
CHANGELOG
8 years ago
25510199be
Don't create multipart/alternative messages with empty text/plain part ( #5283 )
...
Conflicts:
CHANGELOG
program/steps/mail/sendmail.inc
8 years ago
fbf89913a3
Fix missing localization of HTML editor when assets_dir != INSTALL_PATH
...
Conflicts:
CHANGELOG
9 years ago
72a09408e9
Use contact_search_name format in popup on results in compose contacts search
...
Conflicts:
CHANGELOG
program/steps/mail/search_contacts.inc
9 years ago
ac592fd169
Searching in both contacts and groups when LDAP addressbook with group_filters option is used
...
Conflicts:
CHANGELOG
program/steps/addressbook/search.inc
9 years ago
e48f8945b3
Fix bug where message list columns could be in wrong order after column drag-n-drop and list sorting
...
Conflicts:
CHANGELOG
9 years ago
7d14065baa
Fix XSS issue in href attribute on area tag ( #5240 , #5241 )
...
Conflicts:
CHANGELOG
9 years ago
877b911dc4
Fix bug where contact search menu fields where always unchecked in Larry skin
...
Conflicts:
CHANGELOG
9 years ago
550143269a
Fix message list multi-select/deselect issue ( #5219 )
...
Conflicts:
CHANGELOG
9 years ago
25bc871ee7
Bump version to 1.1.5
9 years ago
ead0846934
Plugin API: Add html2text hook (backport from master)
9 years ago
848410042c
Fix converting mail addresses with @www. into mailto links ( #5197 )
9 years ago
d54eb6c951
CS fixes
9 years ago
e1ae200201
Transliterate ticket IDs after migration to Github issues
9 years ago
473dc0b86d
Fix so SPECIAL-USE assignments are forced only until user sets special folders ( #4782 )
...
The old behaviour where SPECIAL-USE has always a prio can be bringed back
by setting lock_special_folders=false and adding it to dont_override.
9 years ago
7c04110698
Fix so contactlist_fields option can be set via config file
9 years ago
4d3f055ce0
Refactor desktop notifications
...
- Remove webkitNotifications support, clean up the code
- Unify look and behaviour of notifications in Mail and in Settings
Conflicts:
plugins/newmail_notifier/newmail_notifier.js
9 years ago
160013555f
Update changelog
9 years ago
b01689caf8
Hide DSN option in Preferences when smtp_server is not used ( #1490666 )
9 years ago
d66793f0af
Fix missing emoticons on html-to-text conversion
9 years ago
c8023ac6b1
Fix additional_message_headers plugin compatibility with Mail_Mime >= 1.9 ( #1490657 )
9 years ago
8d047c668f
Plugin API: Added addressbook_export hook
9 years ago
3e55a2d9cb
Fix bug in long recipients list parsing for cases where recipient name contained @-char ( #1490653 )
9 years ago
a2d5db0a98
Fix bug where Archive/Junk buttons were not active after page jump with select=all mode ( #1490647 )
9 years ago
d3b98eb4dc
Fix (again) security issue in DBMail driver of password plugin [CVE-2015-2181] ( #1490643 )
...
Unify the C program code with the one used by other drivers.
Conflicts:
CHANGELOG
9 years ago
7bbefdb63b
Fix XSS issue in SVG images handling ( #1490625 )
...
Conflicts:
CHANGELOG
9 years ago
3f6fbdcc6d
Fix random "access to this resource is secured against CSRF" message at logout ( #1490641 )
...
- this is when openssl module is not installed
9 years ago
Thomas Bruederli