Subject: CVS commit: pkgsrc/mail
From: Takahiro Kambe
Date: 2017-11-09 02:13:12
Message id: 20171109011312.1F948FBDE@cvs.NetBSD.org

Log Message:
mail/roundcube: update to 1.2.7

Security fix for CVE-2017-16651.

RELEASE 1.2.7
-------------
- Fix rewind(): stream does not support seeking (#5950)
- Fix bug where HTML messages could have been rendered empty on some systems
  (#5957)
- Fix (again) bug where image data URIs in css style were treated as
  evil/remote in mail preview (#5580)
- Managesieve: Fix parsing dot-staffed lines in multiline text (#5838, #5959)
- Fix file disclosure vulnerability caused by insufficient input validation
  [CVE-2017-16651] (#6026)

Files:
RevisionActionfile
1.7modifypkgsrc/mail/roundcube/Makefile.common
1.58modifypkgsrc/mail/roundcube/distinfo
1.7modifypkgsrc/mail/roundcube-plugin-enigma/distinfo
1.7modifypkgsrc/mail/roundcube-plugin-password/distinfo
1.7modifypkgsrc/mail/roundcube-plugin-zipdownload/distinfo