stable

roundcubemail-1.4.8-1.fc31

FEDORA-2020-b1e023936e created by remi 3 years ago for Fedora 31

RELEASE 1.4.8

  • Security: Fix potential XSS issue in HTML editor of the identity signature input (#7507)
  • Managesieve: Fix too-small input field in Elastic when using custom headers (#7498)
  • Fix support for an error as a string in message_before_send hook (#7475)
  • Elastic: Fix redundant scrollbar in plain text editor on mail reply (#7500)
  • Elastic: Fix deleted and replied+forwarded icons on messages list (#7503)
  • Managesieve: Allow angle brackets in out-of-office message body (#7518)
  • Fix bug in conversion of email addresses to mailto links in plain text messages (#7526)
  • Fix format=flowed formatting on plain text part derived from the HTML content (#7504)
  • Fix incorrect rewriting of internal links in HTML content (#7512)
  • Fix handling links without defined protocol (#7454)
  • Fix paging of search results on IMAP servers with no SORT capability (#7462)
  • Fix detecting special folders on servers with both SPECIAL-USE and LIST-STATUS (#7525)
  • Security: Fix cross-site scripting (XSS) via HTML messages with malicious svg content [CVE-2020-16145]
  • Security: Fix cross-site scripting (XSS) via HTML messages with malicious math content

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-b1e023936e

This update has been submitted for testing by remi.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update has been pushed to testing.

3 years ago

remi edited this update.

3 years ago

This update can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by bodhi.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
modified
3 years ago
BZ#1868344 CVE-2020-16145 roundcubemail: xss via HTML messages with malicious svg content
0
0
BZ#1868345 CVE-2020-16145 roundcubemail: xss via HTML messages with malicious svg content [fedora-all]
0
0

Automated Test Results