froxlor/Froxlor 2.3.4

froxlor security release 2.3.4

on GitHub

[security] fix validation of email and url fields in settings, properly escape shell arguments in config-services and acme.sh installation

• CVE / report will be published on 3rd of March for admins to have time to update

[cron] avoid endless rebuilding of vhost if let's encrypt is globally disabled and activated for froxlor-vhost; fixes #1382

[config] use correct and safe permissions for /etc/dovecot/conf.d/99-froxlor.conf in trixie, fixes #1380

[cron] fix undefined index 'email_only' in Dns for froxlor-hostname

[ui] fix viewing access/error logs for subdomains as customer

[cron] avoid 'request_slowlog_timeout' can't be greater than 'request_terminate_timeout' issues in php-fpm; fixes #1378