roundcube: 1.4.10 -> 1.4.11

ChangeLog: https://github.com/roundcube/roundcubemail/releases/tag/1.4.11 Most notably is the fix of a XSS vulnerability which allowed an attacker to inject malicious code via CSS's `content'-property from an email[1]. [1] roundcube/roundcubemail@9dc276d
NixOS · Feb 8, 2021 · 27d21f8 · 27d21f8
1 parent d9d1f56
commit 27d21f8
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/pkgs/servers/roundcube/default.nix b/pkgs/servers/roundcube/default.nix
@@ -2,11 +2,11 @@
 
 stdenv.mkDerivation rec {
   pname = "roundcube";
-  version = "1.4.10";
+  version = "1.4.11";
 
   src = fetchurl {
     url = "https://github.com/roundcube/roundcubemail/releases/download/${version}/roundcubemail-${version}-complete.tar.gz";
-    sha256 = "03sjvmnrspkiq0w73xvp1w61pcxhv0djrdm3mvs8h0dp9pfc1n53";
+    sha256 = "sha256-rHMZBwwwX8LIjHcjYFVi2GBwMHMr7ukxzbQJHPBeabc=";
   };
 
   patches = [ ./0001-Don-t-resolve-symlinks-when-trying-to-find-INSTALL_P.patch ];