FEDORA-2017-ede53aa845 — security update for roundcubemail

stable

roundcubemail-1.2.5-1.fc25

FEDORA-2017-ede53aa845 created by remi 5 years ago for Fedora 25

Roundcube Webmail 1.2.5

This is a security update to the stable version 1.2. It primarily fixes a recently discovered vulnerability in the virtualmin and sasl drivers of the password plugin plus adds a few cherry-picked bug fixes from upstream versions. A detailed list of changes is shown below.

It's considered stable and we recommend to update all productive installations of Roundcube with this version. Please do backup your data before updating!

CHANGELOG

Password: Fix security issue in virtualmin and sasl drivers [CVE-2017-8114]
Fix re-positioning of the fixed header of messages list in Chrome when using minimal mode toggle and About dialog (#5711)
Fix so settings/upload.inc could not be used by plugins (#5694)
Fix regression in LDAP fuzzy search where it always used prefix search instead (#5713)
Fix bug where namespace prefix could not be truncated on folders list if show_real_foldernames=true (#5695)
Fix bug where base_dn setting was ignored inside group_filters (#5720)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2017-ede53aa845

This update has been submitted for testing by remi.

5 years ago

This update has been pushed to testing.

5 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

5 years ago

This update has been submitted for stable by remi.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

roundcubemail-1.2.5-1.fc25

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

5 years ago

in testing

5 years ago

in stable

5 years ago

roundcubemail-1.2.5-1.fc25

Automated Test Results

None