From ebc619c149f82e9151bbf672cf065447f4d12923 Mon Sep 17 00:00:00 2001
From: alecpl <alec@alec.pl>
Date: Fri, 26 Feb 2010 03:06:48 -0500
Subject: [PATCH] - Fix CVE-2010-0464: Disable DNS prefetching (#1486449)

---
 CHANGELOG |   24 ++++++++++++++++++++++++
 1 files changed, 24 insertions(+), 0 deletions(-)

diff --git a/CHANGELOG b/CHANGELOG
index 9086274..1093b07 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -1,6 +1,30 @@
 CHANGELOG RoundCube Webmail
 ===========================
 
+- Fix CVE-2010-0464: Disable DNS prefetching (#1486449)
+- Fix Received headers to behave better with SpamAssassin (#1486513)
+- Password: Make passwords encoding consistent with core, add 'password_charset' global option (#1486473)
+- Fix adding contacts SQL error on mysql (#1486459)
+- Squirrelmail_usercopy: support reply-to field (#1486506)
+- Fix IE spellcheck suggestion popup issue (#1486471)
+- Fix email address auto-completion shows regexp pattern (#1486258)
+- Fix merging of configuration parameters: user prefs always survive (#1486368) 
+- Fix quota indicator value after folder purge/expunge (#1486488)
+- Fix external mailto links support for use as protocol handler (#1486037)
+- Fix attachment excessive memory use, support messages of any size (#1484660)
+- Fix setting task name according to auth state
+- Password: fix vpopmaild driver (#1486478)
+- Add workaround for MySQL bug [http://bugs.mysql.com/bug.php?id=46293] (#1486474)
+- Fix quoted text wrapping when replying to an HTML email in plain text (#1484141)
+- Fix handling of extended mailto links (with params) (#1486354)
+- Fix sorting by date of messages without date header on servers without SORT (#1486286)
+- Fix inconsistency when not using default table names (#1486467)
+- Fix folder rename/delete buttons do not appear on creation of first folder (#1486468)
+- Fix character set conversion fails on systems where iconv doesn't accept //IGNORE (#1486375)
+- Login preformance: Create default folders on first login only
+- Import contacts into the selected address book (by Phil Weir)
+- Add support for MDB2's 'sqlsrv' driver (#1486395)
+- Use jQuery-1.4
 - Removed problematic browser-caching of messages
 - Fix incompatybility with suhosin.executor.disable_emodifier (#1486321)
 - Use PLAIN auth when CRAM fails and imap_auth_type='check' (#1486371)

--
Gitblit v1.9.1