]> git.donarmstrong.com Git - roundcube.git/blobdiff - debian/changelog
projects / roundcube.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Disable DNS prefetching to avoid information leakage through links
[roundcube.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index da17bc5d67a9d72a50ab80b76d3ba0840fd5bb80..6323ebdc931475f1871688c10ce4ec4f5c81d3e8 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,10 +1,12 @@
-roundcube (0.3.1-3) UNRELEASED; urgency=low
+roundcube (0.3.1-3) UNRELEASED; urgency=high
 
   * RFC 5321, section 4.5.3.1, asks to not impose any limits on length if
     possible. We respect this by dropping limitation of the local-part of
     an email address. Closes: #568360, #568537.
   * Suggests php-auth-sasl to enable use of SASL mechanisms for mail
     servers. Closes: #567550.
+  * Disable DNS prefetching to avoid information leakage through links
+    embedded in messages. This fixes CVE-2010-0464. Closes: #569660.
 
  -- Vincent Bernat <bernat@debian.org>  Fri, 05 Feb 2010 19:50:51 +0100
 
Roundcube Debian Packaging