Timeline


and

05/30/15: Today

11:39 Ticket #1490417 (XSS via _mbox-parameter in Roundcube v.1.1.1) closed by alec
fixed: Fixed in [b782815dac].
11:39 Changeset in github [15fd8f9] by Aleksander Machniak <alec@…>
Fix XSS vulnerability in _mbox argument handling (#1490417)
11:37 Changeset in github [b782815d] by Aleksander Machniak <alec@…>
Fix XSS vulnerability in _mbox argument handling (#1490417)
07:30 Ticket #1490417 (XSS via _mbox-parameter in Roundcube v.1.1.1) created by sroesemann
The XSS-vulnerability can be triggered by appending malicious script code …

05/29/15: Yesterday

04:16 Ticket #1490416 (PHP7 Compatibility) created by alec
Our code need to be reviewed and tested, but I do not expect many issues. …
04:03 Ticket #1490415 (Require mbstring and ssl extensions) created by alec
In my opinion Roundcube Framework should require ssl and mbstring. I think …

05/28/15:

12:03 Ticket #1490414 (Submit button on top of Login form.) closed by alec
worksforme: What browser? Try without any modifications/plugins. Last stable release …
11:30 Ticket #1490414 (Submit button on top of Login form.) created by NiX
After update to 1.0.4 the Submit button is on top of Login form. …
04:38 Changeset in github [9877f89] by Aleksander Machniak <alec@…>
Update changelog
04:37 Ticket #1490402 (Make generated des_key value more secure) closed by alec
fixed: Done in [3994b3a26c].
04:37 Changeset in github [5529d94] by Aleksander Machniak <alec@…>
Installer: Use openssl_random_pseudo_bytes() (if available) to generate …
04:35 Ticket #1490412 (Blank image in html_signature when saving identity changes) closed by alec
fixed: Fixed in [c044d301e].
04:34 Changeset in github [4312ac80] by Aleksander Machniak <alec@…>
Fix blank image in html_signature when saving identity changes (#1490412)
04:34 Changeset in github [c044d30] by Aleksander Machniak <alec@…>
Fix blank image in html_signature when saving identity changes (#1490412)
04:29 Ticket #1490409 (emoticons plugin regex bug for 'O:)' and 'O:)') closed by alec
fixed: Fixed in [8d7be5199].
04:28 Ticket #1490408 (emoticons plugin quick bug fix for ':$' and ':-$') closed by alec
fixed: Fixed in [8d7be5199].
04:27 Changeset in github [a76693e] by Aleksander Machniak <alec@…>
Fix replacing :$, :-$, O:) and O:-) with emoticons (#1490408, #1490409)
04:25 Changeset in github [8d7be51] by Aleksander Machniak <alec@…>
Fix replacing :$, :-$, O:) and O:-) with emoticons (#1490408, #1490409)
04:19 Ticket #1490413 ("Compose mail to" in addressbook section doesn't work correctly with ...) created by netesa
Steps to reproduce: 1. Search for contacts in multiple addressbook. 2. …
03:41 Ticket #1490412 (Blank image in html_signature when saving identity changes) created by v.tomas
Hello, Editing an identity, if I try to attach an image (I've tried jpeg …

05/27/15:

07:39 Ticket #1490134 (Make most password encryption algorithms available for SQL/LDAP drivers) closed by alec
fixed: Implemented in [3cc6ec573d].
07:38 Changeset in github [1cb6e91] by Aleksander Machniak <alec@…>
Merge branch 'master' of github.com:roundcube/roundcubemail
07:37 Changeset in github [3cc6ec5] by Aleksander Machniak <alec@…>
Make password encryption algorithms available for all drivers (#1490134) …
05:43 Changeset in github [d375b20] by Thomas Bruederli <thomas@…>
Suppress E_DEPRECATED errors after change in [4ab77dd1]
03:59 Changeset in github [4ab77dd] by Thomas Bruederli <thomas@…>
Check for PEAR class before accessing it. With new composer modules this …
02:15 Ticket #1490410 (cleandb.sh crashes) closed by alec
invalid: Yes, you should run the script periodically, but it's not required. …
02:09 Ticket #1490411 (An error occured: File upload failed.) closed by alec
invalid: I don't know if .htaccess file is used by nginx, maybe you need to do …

05/26/15:

19:40 Ticket #1490411 (An error occured: File upload failed.) created by michael.heuberger
Everytime I try to upload a file, i.E. a 1MB image I get this popup error. …
18:08 Ticket #1490410 (cleandb.sh crashes) created by michael.heuberger
I'm getting this error […] Any clues why? Or it is a bug? And should …
16:53 Changeset in github [7b8a0af] by Thomas Bruederli <thomas@…>
Add toolbar button to switch to Mailvelope encryption editor
07:55 Changeset in github [9311fea] by Thomas Bruederli <thomas@…>
Add utility functiion to get an elemet's text content also when running …
06:03 Ticket #1490409 (emoticons plugin regex bug for 'O:)' and 'O:)') created by damadmai
http://trac.roundcube.net/browser/github/plugins/emoticons/emoticons.php
06:02 Ticket #1490408 (emoticons plugin quick bug fix for ':$' and ':-$') created by damadmai
http://trac.roundcube.net/browser/github/plugins/emoticons/emoticons.php
03:43 Ticket #1490407 (Class 'Mail_mimeDecode' not found) closed by thomasb
worksforme: Please read the …
02:32 Changeset in github [245619e] by Thomas Bruederli <bruederli@…>
Update localizations from Transifex

05/25/15:

17:54 Ticket #1490407 (Class 'Mail_mimeDecode' not found) created by michael.heuberger
I spotted plenty of these errors today and am unable to load a certain …
12:51 Changeset in github [1cd3762b] by Thomas Bruederli <thomas@…>
Start integrating the Mailvelope browser extension via its API. - Embed …
02:52 Ticket #1490051 (moduserprefs issue) closed by alec
fixed: Oh, unsetting is already implemented as --delete. --config and --type …
02:51 Changeset in github [8042e13] by Aleksander Machniak <alec@…>
Add --config and --type options to moduserprefs.sh script (#1490051)

05/24/15:

02:51 Ticket #1490406 (Update jQuery to 2.1.4) created by phs
jQuery 2.1.4 is out: …
02:47 Ticket #1490405 (Update TinyMCE to 4.1.10) created by phs
TinyMCE 4.1.10 is out: http://www.tinymce.com/forum/viewtopic.php?id=35578

05/23/15:

11:37 Ticket #1487858 (squirrelmail_usercopy multiple-email contact enhancement) closed by alec
fixed: Done in [86e97e8d509].
11:36 Changeset in github [86e97e8] by Aleksander Machniak <alec@…>
Create groups for multi-address contacts (#1487858)
11:00 Changeset in github [09c2520] by Aleksander Machniak <alec@…>
CS fixes
05:45 Ticket #1490404 (Use des_key only for encryption purposes) created by alec
The des_key should not be used for many purposes. Currently it's used to: …
05:35 Ticket #1490401 ($ckey variable in delete_record() in roundcube_cache_shared.php) closed by alec
fixed: Fixed in [a84f0b65dc].
05:34 Changeset in github [a84f0b6] by Aleksander Machniak <alec@…>
Fix undefined variable use after recent changes (#1490401)
05:28 Ticket #1490403 (Use SHA-256 for session cookie) created by alec
Attackers can theoretically perform prediction attacks on session …
03:42 Changeset in github [3994b3a] by Aleksander Machniak <alec@…>
Installer: Use openssl_random_pseudo_bytes() (if available) to generate …
03:27 Ticket #1490402 (Make generated des_key value more secure) created by alec
During the source code review of Roundcube we have identified, that …
03:15 Ticket #1490401 ($ckey variable in delete_record() in roundcube_cache_shared.php) created by netesa
In roundcube_cache_shared.php, in lines: 508, 511, 515 $ckey variable is …
Note: See TracTimeline for information about the timeline view.