Kolab Groupware OBS

Changes of Revision 4

0001-Fix-cross-site-scripting-XSS-vulnerability-in-settin.patch Changed

@@ -1,31 +1,33 @@
-From bf599fe1cfbb9a6a13681524fd27e85aeb1f549a Mon Sep 17 00:00:00 2001
-From: Aleksander Machniak <alec@alec.pl>
-Date: Sat, 4 Nov 2023 17:52:00 +0100
+From a5b44239022b34eaa034a4352b617974252f29a9 Mon Sep 17 00:00:00 2001
+From: Christian Mollekopf <mollekopf@apheleia-it.ch>
+Date: Tue, 7 Nov 2023 10:53:14 +0100
 Subject: PATCH Fix cross-site scripting (XSS) vulnerability in setting
  Content-Type/Content-Disposition for attachment preview/download
 
 Thanks to rehme.infosec for reporting the issues.
 ---
- CHANGELOG                               |  2 +
+ CHANGELOG                               |  4 ++
  program/lib/Roundcube/rcube_charset.php | 12 ++++++
  program/lib/Roundcube/rcube_imap.php    |  5 +++
  program/lib/Roundcube/rcube_output.php  | 53 ++++++++++++++++++-------
  program/steps/mail/viewsource.inc       | 18 +++++----
  tests/Framework/Charset.php             | 30 +++++++++++++-
- 6 files changed, 97 insertions(+), 23 deletions(-)
+ 6 files changed, 99 insertions(+), 23 deletions(-)
 
 diff --git a/CHANGELOG b/CHANGELOG
-index cab1c743d..ead3d106c 100644
+index bcaa870e3..ead3d106c 100644
 --- a/CHANGELOG
 +++ b/CHANGELOG
-@@ -1,5 +1,7 @@
+@@ -1,5 +1,9 @@
  # Changelog Roundcube Webmail
  
 +- Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download
 +
- RELEASE 1.4.15
- --------------
++RELEASE 1.4.15
++--------------
  - Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168)
+ - Fix PHP 5.4 compatibility by using pear-core-minimal 1.10.11 (#9148)
+ 
 diff --git a/program/lib/Roundcube/rcube_charset.php b/program/lib/Roundcube/rcube_charset.php
 index 88eb6001f..1f69e118d 100644
 --- a/program/lib/Roundcube/rcube_charset.php