e27088a14a
Changelog:
Version 5.0.7 June 6th 2013
SECURITY: Multiple XSS vulnerabilities (oC-SA-2013-028)
New encryption app as preview included. WARNING: This is not yet ready for production use but testing and feedback is welcome.
Several LDAP compatibility fixes
Several performance improvements of file handling
Trashbin fixes for Safari
Internet Explorer fixes
Several Contacts fixes
New check for magic_quotes
External Filesystem fixes
Add support for copying/moving folders between storages
Several smaller fixes
Version 5.0.6 May 14th 2013
SECURITY: SQL Injection (oC-SA-2013-019)
SECURITY: Multiple directory traversals (oC-SA-2013-020)
SECURITY: Multiple XSS vulnerabilities (oC-SA-2013-021)
SECURITY: Open redirector (oC-SA-2013-022)
SECURITY: Password autocompletion (oC-SA-2013-023)
SECURITY: Privilege escalation in the calendar application (oC-SA-2013-024)
SECURITY: Privilege escalation and CSRF in the API (oC-SA-2013-025)
SECURITY: Incomplete blacklist vulnerability (oC-SA-2013-026)
SECURITY: Information disclosure: CSRF token + username (oC-SA-2013-027)
Fix renaming of shared files
Fix UUID handling with LDAP
Fix several undelete files issues
Fix LDAP cachekey handling
Several OCS API fixes
Dropbox mounting fixes
Remove ldap group name restrictions
Fix fetching of the userlist with multiple user backends
Turn off password autocompletion
Translation fixes of the Shared folder
Fix the fileactions order for filetypes
Allow to ship a default theme
Disallow URLs containing “@”
Smaller layout improvemens
Log an upgrade warning
Log a trash bin cleanup message
Improved quota calculation
Allow to set Quota to zero
Fix performance regression for uploading of big files
Several Calendar fixes
Use displaynames in contacts
Check for existing address books during migrate->import
Texteditor fixes
Increase the SQLite database timeout
Order images in Gallery
|
||
|---|---|---|
| .. | ||
| patches | ||
| DESCR | ||
| distinfo | ||
| INSTALL | ||
| Makefile | ||
| MESSAGE | ||
| options.mk | ||
| PLIST | ||