Bug 260838

Summary: mail/roundcube: Security update to 1.5.2
Product: Ports & Packages Reporter: Bernard Spil <brnrd>
Component: Individual Port(s)Assignee: Alex Dupre <ale>
Status: Closed FIXED    
Severity: Affects Only Me CC: chris, vvd
Priority: --- Flags: bugzilla: maintainer-feedback? (ale)
Version: Latest   
Hardware: Any   
OS: Any   
URL: https://github.com/roundcube/roundcubemail/commit/693b7f0ecbd5b6ea68e3414e4eba1474371c0a22
Attachments:
Description Flags
git diff for mail/roundcube none

Description Bernard Spil freebsd_committer freebsd_triage 2021-12-31 10:02:39 UTC 
Created attachment 230583 [details]
git diff for mail/roundcube

Fixes XSS vulnerability

```
mail/roundcube: Security update to 1.5.2

 * PHP 8.1 incompatible as per
   https://github.com/roundcube/roundcubemail/issues/8151

Security: 47197b47-6a1a-11ec-8be6-d4c9ef517024
MFH: 2021Q4
```
Comment 1 Vladimir Druzenko freebsd_committer freebsd_triage 2022-01-07 05:48:22 UTC 
1.5.2 work for me on 12.2 amd64 with php 7.4.
Comment 2 commit-hook freebsd_committer freebsd_triage 2022-01-10 10:25:03 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=7fb0362fe62037c6d6af3df62870f41a37565eca

commit 7fb0362fe62037c6d6af3df62870f41a37565eca
Author:     Alex Dupre <ale@FreeBSD.org>
AuthorDate: 2022-01-10 10:23:51 +0000
Commit:     Alex Dupre <ale@FreeBSD.org>
CommitDate: 2022-01-10 10:23:51 +0000

    mail/roundcube: update to 1.5.2 release.

    PR:             260838
    Submitted by:   brnrd

 mail/roundcube/Makefile | 3 ++-
 mail/roundcube/distinfo | 6 +++---
 2 files changed, 5 insertions(+), 4 deletions(-)