Bug 219789 - mail/roundcube: Update to 1.2.5 (security fix)
Summary: mail/roundcube: Update to 1.2.5 (security fix)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Mark Felder
URL: https://github.com/roundcube/roundcub...
Keywords: patch, security
Depends on:
Blocks:
 
Reported: 2017-06-04 23:05 UTC by VK
Modified: 2017-06-09 18:24 UTC (History)
3 users (show)

See Also:
bugzilla: maintainer-feedback? (ale)
feld: merge-quarterly+


Attachments
Update roundcube to 1.2.5 (995 bytes, patch)
2017-06-04 23:05 UTC, VK
vlad-fbsd: maintainer-approval? (ale)
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description VK freebsd_triage 2017-06-04 23:05:30 UTC
Created attachment 183226 [details]
Update roundcube to 1.2.5

Please bump roundcube to 1.2.5, patch attached. The new version also fixes CVE-2017-8114. Poudriere build passed (11.0, amd64). Run tested in production for past few weeks.
Comment 1 commit-hook freebsd_committer 2017-06-09 18:20:27 UTC
A commit references this bug:

Author: feld
Date: Fri Jun  9 18:20:06 UTC 2017
New revision: 443025
URL: https://svnweb.freebsd.org/changeset/ports/443025

Log:
  Document roundcube vulnerability

  PR:		219789

Changes:
  head/security/vuxml/vuln.xml
Comment 2 commit-hook freebsd_committer 2017-06-09 18:21:30 UTC
A commit references this bug:

Author: feld
Date: Fri Jun  9 18:21:17 UTC 2017
New revision: 443026
URL: https://svnweb.freebsd.org/changeset/ports/443026

Log:
  mail/roundcube: Update to 1.2.5

  PR:		219789
  MFH:		2017Q2
  Security:	CVE-2017-8114

Changes:
  head/mail/roundcube/Makefile
  head/mail/roundcube/distinfo
Comment 3 commit-hook freebsd_committer 2017-06-09 18:23:33 UTC
A commit references this bug:

Author: feld
Date: Fri Jun  9 18:23:19 UTC 2017
New revision: 443027
URL: https://svnweb.freebsd.org/changeset/ports/443027

Log:
  mail/roundcube: Update to 1.2.5

  PR:		219789
  Security:	CVE-2017-8114

  Approved by:	ports-secteam (with hat)

Changes:
_U  branches/2017Q2/
  branches/2017Q2/mail/roundcube/Makefile
  branches/2017Q2/mail/roundcube/distinfo
Comment 4 Mark Felder freebsd_committer 2017-06-09 18:24:28 UTC
Committed, thanks!