-roundcube (0.2~alpha-3) UNRELEASED; urgency=low
+roundcube (0.2~stable-2) unstable; urgency=low
+
+ * Update debconf translations:
+ + French, thanks to Christian Perrier. Closes: #515806.
+ + Swedish, thanks to Martin Bagge. Closes: #516683.
+ * Drop virtual package roundcube-db and add dependencies on real package
+ instead: this way, we can have versioned dependencies on those to avoid
+ version mismatch between packages.
+ * Add a patch to not use a MDB2 feature not present in the Debian
+ package. Thanks to Grzegorz SobaĆski for the patch. Closes: #519104.
+
+ -- Vincent Bernat <bernat@debian.org> Wed, 11 Mar 2009 18:49:32 +0100
+
+roundcube (0.2~stable-1) unstable; urgency=low
+
+ * New upstream version. Closes: #503573, #504570.
+ + Add SQL update scripts for this new release and for
+ 0.2~alpha. Remove copy of SQL upgrade script from debian/rules.
+ + Remove patch for CVE-2008-5620 which is now fixed upstream.
+ + Remove patch correcting a vulnerability in html2text.php.
+ + Remove patch fixing login issue. This is fixed upstream.
+ + Remove patch setting the default backend to db instead of mdb2:
+ this is not possible any more. We depend on php-mdb2 now.
+ + Update patch to use packaged tinymce.
+ * Upload to unstable since Lenny is out.
+ * Apply fix for XSS issue (CVE-2009-0413). Closes: #514179.
+ * Remove hack to update a SQLite table for an upgrade from a quite old
+ version of roundcube.
+ * Fix pending l10n issues:
+ + Update English debconf template. Closes: #473794.
+ + Add Swedish translation thanks to Martin Bagge. Closes: #508752.
+ * Fix debian/copyright to make lintian happy.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 15 Feb 2009 16:18:58 +0100
+
+roundcube (0.2~alpha-4) experimental; urgency=low
+
+ * Add missing ${misc:Depends} to make Lintian happy.
+ * Add description to each patch.
+ * Execute cron job only if the directory to clean exists.
+ * Reload web server configuration instead of restart, thanks to a patch
+ from Tiago Bortoletto Vaz. Closes: #508633.
+ * Fix a vulnerability in quota image generation. This fixes
+ CVE-2008-5620. Thanks to Nico Golde for reporting it. Closes: #509596.
+ * Add missing dependency on php5-gd, used for quota bar.
+ * For roundcube-pgsql, depends on postgresql-client only. This package
+ is provided by the currently supported real package.
+
+ -- Vincent Bernat <bernat@debian.org> Thu, 25 Dec 2008 11:38:13 +0100
+
+roundcube (0.2~alpha-3) experimental; urgency=high
[ Vincent Bernat ]
+ * Fix a vulnerability in the use of preg_replace (Closes: #508628).
* Adapt descriptions of roundcube-database packages to refer them as
metapackages instead of virtual package (Closes: #495434).
* Add robots.txt from upstream, even if in some configuration, it will
* Changed versioned dependency of rouncube from binary:Version to
source:Version since these are all architecture independent packages.
- -- Vincent Bernat <bernat@debian.org> Sat, 27 Sep 2008 10:38:09 +0200
+ -- Vincent Bernat <bernat@debian.org> Sat, 13 Dec 2008 14:36:02 +0100
roundcube (0.2~alpha-2) experimental; urgency=low
projects / roundcube.git / blobdiff