| | |
|---|
| | | CHANGELOG Roundcube Webmail |
|---|
| | | =========================== |
|---|
| | | |
|---|
| | | |
|---|
| | | - Fix random "access to this resource is secured against CSRF" message at logout (#1490641) |
|---|
| | | - Fix missing language name in "Add to Dictionary" request in HTML mode (#1490634) |
|---|
| | | - Enable use of TLSv1.1 and TLSv1.2 for IMAP (#1490640) |
|---|
| | | - Fix XSS issue in SVG images handling (#1490625) |
|---|
| | | - Fix (again) security issue in DBMail driver of password plugin [CVE-2015-2181] (#1490643) |
|---|
| | | |
|---|
| | | RELEASE 1.1.4 |
|---|
| | | ------------- |
|---|
| | | - Add workaround for https://bugs.php.net/bug.php?id=70757 (#1490582) |
|---|
| | |
|---|
| | | - Make brute force attacks harder by re-generating security token on every failed login (#1490549) |
|---|
| | | - Slow down brute-force attacks by waiting for a second after failed login (#1490549) |
|---|
| | | - Fix .htaccess rewrite rules to not block .well-known URIs (#1490615) |
|---|
| | | - Fix mail view scaling on iOS (#1490551) |
|---|
| | | - Fix so database_attachments::cleanup() does not remove attachments from other sessions (#1490542) |
|---|
| | | - Fix responses list update issue after response name change (#1490555) |
|---|
| | | - Fix bug where message preview was unintentionally reset on check-recent action (#1490563) |
|---|
