Roundcube Project News - Securiry
Security updates 1.2.8 and 1.1.11 released
Following the recent security update for 1.3,
here now come the promised updates for the LTS versions 1.2 and 1.1. They both fix the
recently reported vulnerability allowing IMAP command injection via a GET parameters.
More details about this are published under CVE-2018-9846
.
Security update 1.3.6 released
We just published a security update to the stable version 1.3. It primarily fixes a recently
discovered IMAP command injection vulnerability caused by insufficient input
validation within the archive plugin. Details about the vulnerability
are published under CVE-2018-9846
.
Security updates 1.3.3, 1.2.7 and 1.1.10 released
We just published updates to all stable versions from 1.1.x onwards delivering fixes for a recently discovered file disclosure vulnerability in Roundcube Webmail.
Read more...Update 1.2.6 released
This is a service and security update to the stable version 1.2. It contains some important bug fixes and improvements which we picked from the upstream branch.
Read more...Update 1.3.1 released
We just published the first service release to update the stable version 1.3 which is the result of some touching-up on the new features introduced with the 1.3.0 release. For example it brings back the double-click behavior to open messages which was reduced to the list-only view. Or because the switch to change the mail view layout was a bit hidden, we also added it to the preferences section.
Read more...Security updates 1.2.5, 1.1.9 and 1.0.11 released
We just published updates to all stable versions 1.x delivering important bug fixes and improvements which we picked from the upstream branch.
Read more...Update 1.0.10 released
We just published a security update to the LTS version 1.0. It contains some important bug fixes and security improvements backported from the master version.
Read more...Updates 1.2.4 and 1.1.8 released
We just published another update to the both stable versions 1.2 and 1.1 delivering important bug fixes and improvements which we picked from the upstream branch.
Read more...Updates 1.2.3 and 1.1.7 released
We just published another update to the both stable versions 1.2 and 1.1 delivering important bug fixes and improvements which we picked from the upstream branch.
Read more...Updates 1.2.2 and 1.1.6 published
We just published updates to both stable versions 1.2 and 1.1 delivering important bug fixes and and again more improvements of the Enigma plugin introduced in version 1.2. Version 1.1.6 comes with cherry-picked fixes from the more recent version and improvements in contacts searching as well as a few localization fixes.
Read more...Latest posts from the planet Roundcube blogs
Elastic: Calendar
40KB of css code later I present to you the Calendar plugin. read more
Elastic: Image tools and more
Here’s a short review of recent changes in the Elastic skin. read more
Elastic: Core functionality covered
Still in a need of a graphic designer! I’m finishing work on core functionality for the new Roundcube theme. read more
Elastic
It’s not a secret that I’m working on a new Roundcube theme. It’s supposed to provide a responsive interface for desktop, tables and phones. read more
Recipient input widget
It is more user friendly and usable especially on mobile to handle recipient addresses as boxes. read more
Sieve raw editor
Thanks to great CodeMirror editor and its built-in syntax highlighter we now have a nice editor widget for Sieve scripts. read more
Sending contacts as vCards
There’s a lot about vCards in Roundcube. No surprise, this is simple and established open standard. read more