+roundcube (0.5.2+dfsg-1) unstable; urgency=low
+
+ * New upstream release
+ * Update logrotate configuration. Closes: #619410.
+ * Make debian-db.php owned by root. This really closes: #608976.
+ * Bump Standards-Version. No changes required.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 24 Apr 2011 00:35:34 +0200
+
+roundcube (0.5.1+dfsg-7) unstable; urgency=low
+
+ * Make dbconfig-common use sqlite by default to ensure that the package
+ can be configured non-interactively in most cases. Closes: #617754.
+
+ -- Vincent Bernat <bernat@debian.org> Fri, 11 Mar 2011 09:08:32 +0100
+
+roundcube (0.5.1+dfsg-6) unstable; urgency=low
+
+ * Handle incorrect upgrade from 0.3.1-6 when "changed" column already
+ exists for table "identities". Closes: #617312.
+
+ -- Vincent Bernat <bernat@debian.org> Tue, 08 Mar 2011 07:37:56 +0100
+
+roundcube (0.5.1+dfsg-5) unstable; urgency=low
+
+ * Don't use awk. Use plain shell to modify main.inc.php.
+ Closes: #616074.
+
+ -- Vincent Bernat <bernat@debian.org> Fri, 04 Mar 2011 20:46:57 +0100
+
+roundcube (0.5.1+dfsg-4) unstable; urgency=low
+
+ * Fix debian/watch to remove "+dfsg" suffix.
+ * Use awk instead of sed to modify main.inc.php. Closes: #615277.
+
+ -- Vincent Bernat <bernat@debian.org> Tue, 01 Mar 2011 19:59:00 +0100
+
+roundcube (0.5.1+dfsg-3) unstable; urgency=low
+
+ * Install show_additional_headers plugin in roundcube-plugins package.
+ * Use dbconfig-common to force some upgrade commands using some ugly
+ hacks. This should fix any remaining problems with MySQL
+ upgrade. Closes: #613586.
+
+ -- Vincent Bernat <bernat@debian.org> Fri, 18 Feb 2011 22:04:12 +0100
+
+roundcube (0.5.1+dfsg-2) unstable; urgency=low
+
+ * Remove all "ADD INDEX" from MySQL 0.5-1 upgrade file and put them in
+ postinst script. If you have a problem during the upgrade, please, let
+ me know. This upload is only done to prevent users who did not upgrade
+ to 0.5 yet to have a problem during their upgrade. If you already
+ upgraded to 0.5 and if the upgrade failed (or if some feature are
+ missing like identities management), please look at bug #613586.
+
+ -- Vincent Bernat <bernat@debian.org> Wed, 16 Feb 2011 20:54:48 +0100
+
+roundcube (0.5.1+dfsg-1) unstable; urgency=low
+
+ * Add plugins. Closes: #550454.
+ * Rewrite (and update) of debian/copyright.
+ * Use of yui-compressor to re-minify Javascript files.
+ * Drop correct-magic-path.patch: libmagic1 now provides a symlink to the
+ correct location since 4.24-4.
+ * Repack orig.tar.gz to remove swf file shipped with TinyMCE with no
+ sources available.
+
+ -- Vincent Bernat <bernat@debian.org> Mon, 14 Feb 2011 22:33:51 +0100
+
+roundcube (0.5.1-1) unstable; urgency=low
+
+ * New upstream version. Some bugs are corrected in this release or in a
+ previous release:
+ + when switching to HTML mode, content type is now correctly set.
+ Closes: #611321.
+ + header delimiters handling has been fixed in 0.5.
+ Closes: #603489.
+ * Don't assign "skins" directory to www-data. Closes: #612552.
+ * Add instructions on how to install and upgrade when not using
+ dbconfig-common. We do not ship UPGRADING file any more since it is
+ misleading. Closes: #612511.
+ * Fix MySQL indexes if upgrading from 0.5-2 or lesser. Closes: #610725.
+ * Rework how symlinks work. The only directory to use is
+ /var/lib/roundcube. We use symlink from /usr/share/roundcube to
+ /var/lib/roundcube and not the other way. Moreover, plugins and skins
+ are also symlinked. A user should be able to add plugins and skins in
+ /var/lib/roundcube while default ones are in
+ /usr/share/roundcube. Closes: #612553.
+
+ -- Vincent Bernat <bernat@debian.org> Wed, 09 Feb 2011 07:32:42 +0100
+
+roundcube (0.5-2) experimental; urgency=low
+
+ * If 0.3.1 was installed from scratch, upgrade does not work on MySQL
+ and PostgreSQL because we try to create an index which already
+ exists. With SQLite, the error is ignored, no fix needed. When using
+ PostgreSQL, fix this by dropping the index if it already
+ exists. Nothing similar seems to exist with MySQL. Therefore, just
+ don't create the index. We need to handle this later. See bug
+ #610725. Not closing.
+
+ -- Vincent Bernat <bernat@debian.org> Fri, 21 Jan 2011 21:44:05 +0100
+
+roundcube (0.5-1) experimental; urgency=low
+
+ * New upstream release. Closes: #592312.
+ + Drop patches included upstream (DNS prefetching, jQuery 1.4
+ handling, email address validation, duplicate headers, incorrectly
+ formatted received headers). Adapt other patches. One of the patch
+ now correctly states to use dpkg-reconfigure roundcube-core.
+ Closes: #608977.
+ + Update SQL commands to use to upgrade database.
+ That also closes: #602922. Unfortunately, the user may get some
+ harmless error messages because there is no way to know if
+ 0.3.1 was installed from scratch or upgraded from 0.3.
+ + Update dependencies to match INSTALL file. Only exception is the
+ use of Mail_Mime 1.8.0 in place of 1.8.1 which is not available in
+ Debian. We depends on jQuery 1.4.2 because 1.4.4 is not available in
+ Debian.
+ + All folders are correctly checked since 0.4. Closes: #552430.
+ + Also, closes: #553194 since it seems to have been fixed too.
+ + There is also the possibility to not top-quote since 0.4.
+ Closes: #491063.
+ + Closes: #602144. Also fixed.
+ * Move .htaccess to /etc/roundcube and use a symlink (Closes: #591369).
+ * Don't let www-data overwrite debian-db.php. Closes: #608976.
+ * Bump Standards-Version. No changes required.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 15 Jan 2011 12:40:27 +0100
+
+roundcube (0.3.1-6) unstable; urgency=low
+
+ * Update Arabic debconf translation, thanks to Ossama Khayat.
+ Closes: #596181.
+ * Update Portuguese debconf translation, thanks to Christian Perrier.
+ Closes: #599575.
+ * Add a patch to avoid duplicate boundaries in headers when adding an
+ attachment. Closes: #599586.
+
+ -- Vincent Bernat <bernat@debian.org> Mon, 18 Oct 2010 23:14:37 +0200
+
+roundcube (0.3.1-5) unstable; urgency=low
+
+ * Depends on php-mail-mime 1.7.0 or more recent to handle correctly
+ 'mime_param_folding' directive. Closes: #588295.
+ * Add Danish debconf translation, thanks to Joe Dalton.
+ Closes: #593271.
+ * Add a patch to fix Received header to behave better with Spam
+ Assassin. Closes: #595204.
+
+ -- Vincent Bernat <bernat@debian.org> Thu, 02 Sep 2010 07:54:58 +0200
+
+roundcube (0.3.1-4) unstable; urgency=low
+
+ * Update README.Debian to state that the variable to modify is
+ 'htmleditor' instead of 'enable_htmleditor'. Thanks to Hans
+ Spaans. Closes: #575556.
+ * Add Brazilian Portuguese debconf translation, thanks to Eder
+ L. Marques. Closes: #581745.
+ * Switch default encoding to UTF-8 instead of ISO-8859-1.
+ Closes: #588084.
+ * Add more explanations on how to install roundcube in a Debian system
+ in README.Debian. Closes: #584458, #582894.
+ * Bump Standards-Version. No changes required.
+ * Switch to 3.0 (quilt) format.
+ * Use Breaks instead of Conflicts to move files from older roundcube
+ installations.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 17 Jul 2010 17:23:30 +0200
+
+roundcube (0.3.1-3) unstable; urgency=high
+
+ * RFC 5321, section 4.5.3.1, asks to not impose any limits on length if
+ possible. We respect this by dropping limitation of the local-part of
+ an email address. Closes: #568360, #568537.
+ * Suggests php-auth-sasl to enable use of SASL mechanisms for mail
+ servers. Closes: #567550.
+ * Disable DNS prefetching to avoid information leakage through links
+ embedded in messages. This fixes CVE-2010-0464. Closes: #569660.
+ * Bump Standards-Version. No changes required.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 13 Feb 2010 10:21:49 +0100
+
+roundcube (0.3.1-2) unstable; urgency=low
+
+ * Fix VCS links in debian/control, thanks to Torsten Landschoff.
+ Closes: #555900.
+ * Really ship NEWS.Debian.
+ * Add changesets 3170 and 3202 from upstream to handle gracefully jQuery
+ 1.4. Thanks to Volker Gropp for the report. Closes: #565715.
+
+ -- Vincent Bernat <bernat@debian.org> Mon, 18 Jan 2010 23:11:01 +0100
+
+roundcube (0.3.1-1) unstable; urgency=low
+
+ * New upstream release.
+ * Add a notice in NEWS.Debian about php.ini options that should be set
+ to get Roundcube working properly. Closes: #549428, #552508.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 07 Nov 2009 17:41:37 +0100
+
+roundcube (0.3-2) unstable; urgency=low
+
+ * Really fix #544579 since the default value is null without
+ quotes. This really Closes: #544579.
+ * Enlarge login box to accommodate sk_SK locale. Closes: #542933.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 27 Sep 2009 11:26:56 +0200
+
+roundcube (0.3-1) unstable; urgency=low
+
+ * New upstream release. Closes: #545498.
+ * Update debconf translations:
+ + Italian, thanks to Luca Monducci. Closes: #544199.
+ + Czech, thanks to Miroslav Kure. Closes: #546413.
+ * Roundcube configuration now uses 'language' instead of 'locale_string'
+ to specify the default language. Update postinst to reflect this
+ change. Thanks to Richard van den Berg for noticing this. Closes: #544579.
+ * Depends on libjs-jquery (>= 1.3) since this is now used by roundcube.
+ * Don't ship any plugins for now but ship an empty plugins directory.
+ * Ship main .htaccess since it is needed to setup correctly PHP (for
+ example, to disable PHP Suhosin cookie encryption).
+ * Bump Standards-Version. No changes required.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 27 Sep 2009 11:00:30 +0200
+
+roundcube (0.2.2-1) unstable; urgency=low
+
+ * New upstream release
+ * Bump Standards-Version. No changes required.
+ * Remove *.js.src which are not needed at runtime.
+ * Don't send email contents to Google by default by using php5-pspell
+ instead. Thanks to Anand Kumria. Closes: #529563.
+ * Update debconf translations:
+ + Basque, thanks to Piarres Beobide. Closes: #534282.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 05 Jul 2009 09:53:17 +0200
+
+roundcube (0.2.1-2) unstable; urgency=low
+
+ * Update debconf translations:
+ + German, thanks to Helge Kreutzmann. Closes: #520004.
+ + Japanese, thanks to Hideki Yamane. Closes: #520024.
+ + Spanish, thanks to Francisco Javier. Closes: #526696.
+ + Russian, thanks to Yuri Kozlov. Closes: #528796.
+ * Depend on php-mdb2-* (>= 1.5.0b2) since it is needed to fix some
+ bugs. Closes: #519104, #519293. Remove not needed any more patch from
+ debian/patches/series. Keep it in debian/patches to help backports.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 16 May 2009 15:30:17 +0200
+
+roundcube (0.2.1-1) unstable; urgency=low
+
+ * New upstream release:
+ + Fix use_packaged_tinymce.patch to apply to this new version
+ + Remove cve-2009-0413.patch which has been applied upstream
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 14 Mar 2009 17:42:07 +0100
+
+roundcube (0.2~stable-2) unstable; urgency=low
+
+ * Update debconf translations:
+ + French, thanks to Christian Perrier. Closes: #515806.
+ + Swedish, thanks to Martin Bagge. Closes: #516683.
+ * Drop virtual package roundcube-db and add dependencies on real package
+ instead: this way, we can have versioned dependencies on those to avoid
+ version mismatch between packages.
+ * Add a patch to not use a MDB2 feature not present in the Debian
+ package. Thanks to Grzegorz SobaĆski for the patch. Closes: #519104.
+
+ -- Vincent Bernat <bernat@debian.org> Wed, 11 Mar 2009 18:49:32 +0100
+
+roundcube (0.2~stable-1) unstable; urgency=low
+
+ * New upstream version. Closes: #503573, #504570.
+ + Add SQL update scripts for this new release and for
+ 0.2~alpha. Remove copy of SQL upgrade script from debian/rules.
+ + Remove patch for CVE-2008-5620 which is now fixed upstream.
+ + Remove patch correcting a vulnerability in html2text.php.
+ + Remove patch fixing login issue. This is fixed upstream.
+ + Remove patch setting the default backend to db instead of mdb2:
+ this is not possible any more. We depend on php-mdb2 now.
+ + Update patch to use packaged tinymce.
+ * Upload to unstable since Lenny is out.
+ * Apply fix for XSS issue (CVE-2009-0413). Closes: #514179.
+ * Remove hack to update a SQLite table for an upgrade from a quite old
+ version of roundcube.
+ * Fix pending l10n issues:
+ + Update English debconf template. Closes: #473794.
+ + Add Swedish translation thanks to Martin Bagge. Closes: #508752.
+ * Fix debian/copyright to make lintian happy.
+
+ -- Vincent Bernat <bernat@debian.org> Sun, 15 Feb 2009 16:18:58 +0100
+
+roundcube (0.2~alpha-4) experimental; urgency=low
+
+ * Add missing ${misc:Depends} to make Lintian happy.
+ * Add description to each patch.
+ * Execute cron job only if the directory to clean exists.
+ * Reload web server configuration instead of restart, thanks to a patch
+ from Tiago Bortoletto Vaz. Closes: #508633.
+ * Fix a vulnerability in quota image generation. This fixes
+ CVE-2008-5620. Thanks to Nico Golde for reporting it. Closes: #509596.
+ * Add missing dependency on php5-gd, used for quota bar.
+ * For roundcube-pgsql, depends on postgresql-client only. This package
+ is provided by the currently supported real package.
+
+ -- Vincent Bernat <bernat@debian.org> Thu, 25 Dec 2008 11:38:13 +0100
+
+roundcube (0.2~alpha-3) experimental; urgency=high
+
+ [ Vincent Bernat ]
+ * Fix a vulnerability in the use of preg_replace (Closes: #508628).
+ * Adapt descriptions of roundcube-database packages to refer them as
+ metapackages instead of virtual package (Closes: #495434).
+ * Add robots.txt from upstream, even if in some configuration, it will
+ not be considered (Closes: #499108).
+ * Do not ship .htaccess files. Restrictions are set in Apache or
+ Lighttpd configuration files (Closes: #500202).
+
+ [ Romain Beauxis ]
+ * Changed versioned dependency of rouncube from binary:Version to
+ source:Version since these are all architecture independent packages.
+
+ -- Vincent Bernat <bernat@debian.org> Sat, 13 Dec 2008 14:36:02 +0100
+
roundcube (0.2~alpha-2) experimental; urgency=low
[ Vincent Bernat ]
projects / roundcube.git / blobdiff