self-hosted/Mailu
1
0
Fork 0
mirror of https://github.com/Mailu/Mailu.git synced 2025-03-25 21:28:55 +02:00
Code Issues Releases Activity

Merge #3267

Browse Source 
3267: Update Roundcube 1.6.7 due to XSS vulnerabilities r=mergify[bot] a=ctrl-i

## What type of PR?

Bug fix

## What does this PR do?

Updates roundcube to 1.6.7

### Related issue(s)

Due to XSS vulnerabilities see [here](https://github.com/roundcube/roundcubemail/releases/tag/1.6.7)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: ctrl-i <1422608+ctrl-i@users.noreply.github.com>
This commit is contained in:
bors-mailu[bot] 2024-05-20 07:19:42 +00:00 committed by GitHub
commit d84c73a9d4
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
towncrier/newsfragments/3261.bugfix Normal file
View File

@ -0,0 +1 @@
Updated roundcube to version 1.6.7

2
webmails/Dockerfile
View File

@ -29,7 +29,7 @@ RUN set -euxo pipefail \
; mkdir -p /run/nginx /conf
# roundcube
ENV ROUNDCUBE_URL https://github.com/roundcube/roundcubemail/releases/download/1.6.6/roundcubemail-1.6.6-complete.tar.gz
ENV ROUNDCUBE_URL https://github.com/roundcube/roundcubemail/releases/download/1.6.7/roundcubemail-1.6.7-complete.tar.gz
ENV CARDDAV_URL https://github.com/mstilkerich/rcmcarddav/releases/download/v5.1.0/carddav-v5.1.0.tar.gz
RUN set -euxo pipefail \