<?php
/**
 * Release focus. Possible values:
 * 0 - N/A
 * 1 - Initial freshmeat announcement
 * 2 - Documentation
 * 3 - Code cleanup
 * 4 - Minor feature enhancements
 * 5 - Major feature enhancements
 * 6 - Minor bugfixes
 * 7 - Major bugfixes
 * 8 - Minor security fixes
 * 9 - Major security fixes
 */
$this->notes['fm']['focus'] = 8;

/* Mailing list release notes. */
$this->notes['ml']['changes'] = <<<ML
The Horde Team is pleased to announce the official release of the IMP Webmail
Client version 3.2.5.

IMP is the Internet Messaging Program. IMP allows universal, Web-based access
to IMAP and POP3 servers and provides full support for sending and receiving
attachments, and many other features normally only found in desktop email
clients.

Changes in this release:
    - SECURITY: Closed an XSS hole in the HTML viewer, a variation to the one
      reported in http://www.greymagic.com/security/advisories/gm005-mc/.
      This vulnerability only exists when using the Internet Explorer to
      access IMP and only when using the inline MIME viewer for HTML messages.
    - Commented out the complete <style> tags in the HTML viewer to avoid CSS
      code appearing in the message.
    - Fixed a cosmetic issue with broken mail servers that return quotes where
      they should not (Bug #292).
    - Updated translations: Estonian, German.

Thanks to Martijn Brinkers for reporting the XSS vulnerability.
ML;

/* Freshmeat release notes. */
$this->notes['fm']['changes'] = <<<FM
This release fixes a potential XSS vulnerability exploited via the HTML+TIME
feature of the Internet Explorer. It also fixes a cosmetic issue when inline
CSS code in HTML messages is not filtered out completely and another one with
escaped double quotes on some broken mail servers. The Estonian and German
translations have been updated.
FM;

$this->notes['name'] = 'IMP';
$this->notes['fm']['project'] = 'imp';
$this->notes['fm']['branch'] = '3.x Stable';
