alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests Actions Activity

chore(deps): update dependency roundcube/roundcubemail to v1.6.12 - autoclosed #3415

Closed
renovate-bot wants to merge 1 commits from renovate/roundcube-roundcubemail-1.x into main
pull from: renovate/roundcube-roundcubemail-1.x
merge into: alexlebens:main
Conversation 0 Commits 1 Files Changed 1 +1 -1
renovate-bot commented 2026-01-23 21:01:09 +00:00
Collaborator
Copy Link

This PR contains the following updates:

Package Update Change
roundcube/roundcubemail patch 1.6.111.6.12

⚠️ Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

roundcube/roundcubemail (roundcube/roundcubemail)

v1.6.12: Roundcube Webmail 1.6.12

Compare Source

This is a security update to the stable version 1.6 of Roundcube Webmail.
It provides fixes to recently reported security vulnerabilities:

  • Fix Cross-Site-Scripting vulnerability via SVG's animate tag reported by Valentin T., CrowdStrike.
  • Fix Information Disclosure vulnerability in the HTML style sanitizer reported by somerandomdev.

This version is considered stable and we recommend to update all productive installations of Roundcube 1.6.x with it. Please do backup your data before updating!

CHANGELOG

  • Support IPv6 in database DSN (#​9937)
  • Don't force specific error_reporting setting
  • Fix compatibility with PHP 8.5 regarding array_first()
  • Remove X-XSS-Protection example from .htaccess file (#​9875)
  • Fix "Assign to group" action state after creation of a first group (#​9889)
  • Fix bug where contacts search would fail if contactlist_fields contained vcard fields (#​9850)
  • Fix bug where an mbox export file could include inconsistent message delimiters (#​9879)
  • Fix parsing of inline styles that aren't well-formatted (#​9948)
  • Fix Cross-Site-Scripting vulnerability via SVG's animate tag
  • Fix Information Disclosure vulnerability in the HTML style sanitizer

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [roundcube/roundcubemail](https://github.com/roundcube/roundcubemail) | patch | `1.6.11` → `1.6.12` | --- > ⚠️ **Warning** > > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>roundcube/roundcubemail (roundcube/roundcubemail)</summary> ### [`v1.6.12`](https://github.com/roundcube/roundcubemail/releases/tag/1.6.12): Roundcube Webmail 1.6.12 [Compare Source](https://github.com/roundcube/roundcubemail/compare/1.6.11...1.6.12) This is a security update to the stable version 1.6 of Roundcube Webmail. It provides fixes to recently reported security vulnerabilities: - Fix Cross-Site-Scripting vulnerability via SVG's animate tag reported by Valentin T., CrowdStrike. - Fix Information Disclosure vulnerability in the HTML style sanitizer reported by somerandomdev. This version is considered stable and we recommend to update all productive installations of Roundcube 1.6.x with it. Please do backup your data before updating! #### CHANGELOG - Support IPv6 in database DSN ([#&#8203;9937](https://github.com/roundcube/roundcubemail/issues/9937)) - Don't force specific error\_reporting setting - Fix compatibility with PHP 8.5 regarding array\_first() - Remove X-XSS-Protection example from .htaccess file ([#&#8203;9875](https://github.com/roundcube/roundcubemail/issues/9875)) - Fix "Assign to group" action state after creation of a first group ([#&#8203;9889](https://github.com/roundcube/roundcubemail/issues/9889)) - Fix bug where contacts search would fail if `contactlist_fields` contained vcard fields ([#&#8203;9850](https://github.com/roundcube/roundcubemail/issues/9850)) - Fix bug where an mbox export file could include inconsistent message delimiters ([#&#8203;9879](https://github.com/roundcube/roundcubemail/issues/9879)) - Fix parsing of inline styles that aren't well-formatted ([#&#8203;9948](https://github.com/roundcube/roundcubemail/issues/9948)) - Fix Cross-Site-Scripting vulnerability via SVG's animate tag - Fix Information Disclosure vulnerability in the HTML style sanitizer </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42OS4yIiwidXBkYXRlZEluVmVyIjoiNDIuNjkuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->
renovate-bot added 1 commit 2026-01-23 21:01:11 +00:00
chore(deps): update dependency roundcube/roundcubemail to v1.6.12
All checks were successful
lint-test-helm / lint-helm (pull_request) Successful in 15s
Details
1d4fd48a83
renovate-bot force-pushed renovate/roundcube-roundcubemail-1.x from 1d4fd48a83 to 76fe3815c0 2026-01-23 22:14:34 +00:00 Compare
renovate-bot force-pushed renovate/roundcube-roundcubemail-1.x from 76fe3815c0 to d12028acda 2026-01-23 22:47:59 +00:00 Compare
renovate-bot force-pushed renovate/roundcube-roundcubemail-1.x from d12028acda to 9cbf437a10 2026-01-23 23:03:18 +00:00 Compare
renovate-bot changed title from chore(deps): update dependency roundcube/roundcubemail to v1.6.12 to chore(deps): update dependency roundcube/roundcubemail to v1.6.12 - autoclosed 2026-01-23 23:18:01 +00:00
renovate-bot closed this pull request 2026-01-23 23:18:01 +00:00
All checks were successful
lint-test-helm / lint-helm (pull_request) Successful in 19s
Details
render-manifests-automerge / render-manifests-automerge (pull_request) Has been skipped
Details
render-manifests-merge / render-manifests-merge (pull_request) Has been skipped
Details

Pull request closed

This pull request cannot be reopened because the branch was deleted.
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
Renovate
Issue generated by Renovate.
 automerge
This PR will be automerged by Renovate.
 chart
Chart update generated by Renovate.
 image
Image update generated by Renovate.
 stale
PR or Issue that has not been updated recently.
No Label
Milestone
No items
No Milestone
Assignees
Clear assignees
gitea-bot renovate-bot alexlebens
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: alexlebens/infrastructure#3415
Delete Branch "renovate/roundcube-roundcubemail-1.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?