Skip to content

Commit

Permalink
Fix so install/update scripts do not require PEAR (#9037)
Browse files Browse the repository at this point in the history
  • Loading branch information
alecpl committed Aug 4, 2024
1 parent a25e48e commit ed98839
Show file tree
Hide file tree
Showing 3 changed files with 5 additions and 3 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
- Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024-42009]
- Fix XSS vulnerability in serving of attachments other than HTML or SVG [CVE-2024-42008]
- Fix information leak (access to remote content) via insufficient CSS filtering [CVE-2024-42010]
- Fix so install/update scripts do not require PEAR (#9037)

## Release 1.5.7

Expand Down
5 changes: 3 additions & 2 deletions program/lib/Roundcube/bootstrap.php
Original file line number Diff line number Diff line change
Expand Up @@ -100,8 +100,9 @@
spl_autoload_register('rcube_autoload');

// set PEAR error handling (will also load the PEAR main class)
PEAR::setErrorHandling(PEAR_ERROR_CALLBACK, function($err) { rcube::raise_error($err, true); });

if (class_exists('PEAR')) {
PEAR::setErrorHandling(PEAR_ERROR_CALLBACK, function($err) { rcube::raise_error($err, true); });
}

/**
* Similar function as in_array() but case-insensitive with multibyte support.
Expand Down
2 changes: 1 addition & 1 deletion program/lib/Roundcube/rcube.php
Original file line number Diff line number Diff line change
Expand Up @@ -1387,7 +1387,7 @@ public static function raise_error($arg = [], $log = false, $terminate = false)
'message' => $arg->getMessage(),
];
}
else if ($arg instanceof PEAR_Error) {
else if (is_object($arg) && is_a($arg, 'PEAR_Error')) {
$info = $arg->getUserInfo();
$arg = [
'code' => $arg->getCode(),
Expand Down

0 comments on commit ed98839

Please sign in to comment.