FEDORA-2020-b1e023936e created by remi 3 months ago for Fedora 31
stable

RELEASE 1.4.8

  • Security: Fix potential XSS issue in HTML editor of the identity signature input (#7507)
  • Managesieve: Fix too-small input field in Elastic when using custom headers (#7498)
  • Fix support for an error as a string in message_before_send hook (#7475)
  • Elastic: Fix redundant scrollbar in plain text editor on mail reply (#7500)
  • Elastic: Fix deleted and replied+forwarded icons on messages list (#7503)
  • Managesieve: Allow angle brackets in out-of-office message body (#7518)
  • Fix bug in conversion of email addresses to mailto links in plain text messages (#7526)
  • Fix format=flowed formatting on plain text part derived from the HTML content (#7504)
  • Fix incorrect rewriting of internal links in HTML content (#7512)
  • Fix handling links without defined protocol (#7454)
  • Fix paging of search results on IMAP servers with no SORT capability (#7462)
  • Fix detecting special folders on servers with both SPECIAL-USE and LIST-STATUS (#7525)
  • Security: Fix cross-site scripting (XSS) via HTML messages with malicious svg content [CVE-2020-16145]
  • Security: Fix cross-site scripting (XSS) via HTML messages with malicious math content

How to install

sudo dnf upgrade --advisory=FEDORA-2020-b1e023936e

This update has been submitted for testing by remi.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update has been pushed to testing.

3 months ago

remi edited this update.

3 months ago

This update can be pushed to stable now if the maintainer wishes

3 months ago

This update has been submitted for stable by bodhi.

3 months ago

This update has been pushed to stable.

3 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
3 months ago
in testing
3 months ago
in stable
3 months ago
modified
3 months ago
BZ#1868344 CVE-2020-16145 roundcubemail: xss via HTML messages with malicious svg content
0
0
BZ#1868345 CVE-2020-16145 roundcubemail: xss via HTML messages with malicious svg content [fedora-all]
0
0

Automated Test Results