]> git.donarmstrong.com Git - roundcube.git/blobdiff - debian/changelog
projects / roundcube.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Fix a vulnerability in quota image generation. This fixes
[roundcube.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 5b5d498bb48609386b4a444ca78bc13d150cbc95..8a5878a866d28314fed6a6a20fa0aef8474b86d4 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -5,11 +5,13 @@ roundcube (0.2~alpha-4) UNRELEASED; urgency=low
   * Execute cron job only if the directory to clean exists.
   * Reload web server configuration instead of restart, thanks to a patch
     from Tiago Bortoletto Vaz. Closes: #508633.
+  * Fix a vulnerability in quota image generation. This fixes
+    CVE-2008-5620. Thanks to Nico Golde for reporting it. Closes: #509596.
   * Add missing dependency on php5-gd, used for quota bar.
   * For roundcube-pgsql, depends on postgresql-client only. This package
     is provided by the currently supported real package.
 
- -- Vincent Bernat <bernat@debian.org>  Wed, 24 Dec 2008 17:16:41 +0100
+ -- Vincent Bernat <bernat@debian.org>  Thu, 25 Dec 2008 11:38:13 +0100
 
 roundcube (0.2~alpha-3) experimental; urgency=high
 
Roundcube Debian Packaging