All releases tagged Minor security fixes
Release Notes: XSS vulnerabilities were fixed. The compose window is now closed after redirecting a message. The option to report messages as spam/ham through redirection was re-added. It is no longer possible to save filter rules without conditions. Reindexing of existing filter rules when deleting a rule was fixed. IMAP filtering was fixed. Folder names in Procmail rules if using Maildir were fixed. All of a user's address books are now removed when removing users. Notepad deletion was fixed. French, Swedish, and Turkish translations were updated. There were also further bugfixes and improvements.
Release Notes: This release fixes XSS vulnerabilities. It fixes a regression in PGP support. Improved HTML editor support. Updated Czech, Hungarian, Italian, Slovak, and Swedish translations. Small bugfixes and improvements.
Release Notes: This release fixes XSS vulnerabilities (CVE-2012-0791, CVE-2012-0909), adds support for resetting passwords in LDAP, and fixes compatibility with Firefox 10.
Release Notes: This release fixes XSS vulnerabilities, displays the event time in the dynamic calendar view if requested, improves vCard compatibility, updates the Japanese translation, and adds small bugfixes and improvements.
Release Notes: Three XSS vulnerabilities have been fixed. A protection against CSRF attacks has been added to the preference forms. Bugs in the IMAP and Procmail filter drivers have been fixed. Other minor bugfixes and improvements have been made. the Estonian, French, and Japanese translations have been updated.
Release Notes: An XSS vulnerability in the administration interface has been fixed. The XSS filter for HTML messages and synchronization has been improved. Some issues with certain browsers have been fixed. Reference headers are save now with drafts. A preference for the name format for when sorting contacts and support for some proprietary vCard fields have been added. The vacation rules for some drivers have been fixed or improved. Weekly recurrences and editing remote calendars have been fixed. Importing task due dates has been fixed. A Croatian translation has been added.
Release Notes: This is a security release that fixes a vulnerability that allows overwriting of local files and two XSS vulnerabilities.
Release Notes: Synchronization and LDAP configuration have been improved. An issue involving PGP public keys retrieved from the local address book has been fixed. A regression in 1.2.2 with certain actions, issues with POP3 and deleting messages and certain IMAP folder creation issues have been fixed. The dynamic interface works with IE 8. A script to import events from SquirrelMail calendars and an option to manually change attendee responses has been added. Holidays support has been improved. The estimated time has been added to the task list. A hook for altering the displayed task has been added.
Release Notes: Synchronization and LDAP configuration have been improved. An issue involving PGP public keys retrieved from the local address book has been fixed. A regression in 1.2.2 with certain actions, issues with POP3 and deleting messages, and certain IMAP folder creation issues have been fixed. The dynamic interface now works with IE 8. A script to import events from SquirrelMail calendars and an option to manually change attendee responses have been added. Holidays support has been improved. The estimated time has been added to the task list. A hook for altering the displayed task has been added.
Release Notes: This is a security release that fixes unescaped output and closes a potential local file inclusion vulnerability. In addition, this release fixes the SQL share driver with PostgreSQL, adds support for Mozilla Sunbird snooze properties, and includes several minor bugfixes and improvements.
