FEDORA-EPEL-2017-fbb2447c6e created by remi 3 years ago for Fedora EPEL 7
stable

Version 5.2.22 (January 5th 2017)

  • SECURITY Fix CVE-2017-5223, local file disclosure vulnerability if content passed to msgHTML() is sourced from unfiltered user input. Reported by Yongxiang Li of Asiasecurity. The fix for this means that calls to msgHTML() without a $basedir will not import images with relative URLs, and relative URLs containing .. will be ignored.
  • Add simple contact form example
  • Emoji in test content

Version 5.2.21 (December 28th 2016)

  • Fix missed number update in version file - no functional changes

Version 5.2.20 (December 28th 2016)

  • SECURITY Critical security update for CVE-2016-10045 please update now! Thanks to Dawid Golunski and Paul Buonopane (Zenexer).

Version 5.2.19 (December 26th 2016)

  • Minor cleanup

Version 5.2.18 (December 24th 2016)

  • SECURITY Critical security update for CVE-2016-10033 please update now! Thanks to Dawid Golunski.
  • Add ability to extract the SMTP transaction ID from some common SMTP success messages
  • Minor documentation tweaks

Version 5.2.17 (December 9th 2016)

  • This is officially the last feature release of 5.2. Security fixes only from now on; use PHPMailer 6.0!
  • Allow DKIM private key to be provided as a string
  • Provide mechanism to allow overriding of boundary and message ID creation
  • Improve Brazilian Portuguese, Spanish, Swedish, Romanian, and German translations
  • PHP 7.1 support for Travis-CI
  • Fix some language codes
  • Add security notices
  • Improve DKIM compatibility in older PHP versions
  • Improve trapping and capture of SMTP connection errors
  • Improve passthrough of error levels for debug output
  • PHPDoc cleanup

This update has been submitted for testing by remi.

3 years ago

This update has obsoleted php-PHPMailer-5.2.21-1.el7, and has inherited its bugs and notes.

3 years ago

This update has been pushed to testing.

3 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by remi.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1409489 CVE-2016-10033 phpmailer: Parameter injection via mail() function
0
0
BZ#1409491 CVE-2016-10033 php-PHPMailer: phpmailer: Parameter injection via mail() function [epel-all]
0
0

Automated Test Results