File postfixadmin-changes-since-2.3.7.diff of Package postfixadmin.openSUSE_13.1_Update

diff -u -p -r CHANGELOG.TXT CHANGELOG.TXT
--- CHANGELOG.TXT	2014-02-20 22:35:01.000000000 +0100
+++ CHANGELOG.TXT	2014-05-18 21:52:36.942880893 +0200
@@ -8,11 +8,14 @@
 #     http://www.postfixadmin.com or http://postfixadmin.sf.net 
 #
 # Last update:
-# $Id: CHANGELOG.TXT 1651 2014-02-20 21:35:01Z christian_boltz $
+# $Id: CHANGELOG.TXT 1673 2014-05-18 19:52:51Z christian_boltz $
+
+Changes since the 2.3.7 release:
+  - fix query to enable/disable alias in edit-mailbox for PostgreSQL (#311)
 
 Version 2.3.7 - 2014/02/20 - SVN r1651 (postfixadmin-2.3 branch)
 ----------------------------------------------------------------
-  - SECURITY: fix SQL injection in show_gen_status()
+  - SECURITY: fix SQL injection in show_gen_status() (CVE-2014-2655)
   - lt.lang, da.lang translation update
   - when enabling/disabling a mailbox, also update the corresponding alias
   - fix creating superadmin in setup.php with MariaDB (more strict SQL)
diff -u -p -r edit-mailbox.php edit-mailbox.php
--- edit-mailbox.php	2013-06-16 18:39:36.000000000 +0200
+++ edit-mailbox.php	2014-05-18 21:52:36.943880881 +0200
@@ -9,7 +9,7 @@
  * Further details on the project are available at : 
  *     http://www.postfixadmin.com or http://postfixadmin.sf.net 
  * 
- * @version $Id: edit-mailbox.php 1479 2013-06-16 16:39:36Z christian_boltz $ 
+ * @version $Id: edit-mailbox.php 1673 2014-05-18 19:52:51Z christian_boltz $ 
  * @license GNU GPL v2 or later. 
  * 
  * File: edit-mailbox.php 
@@ -162,7 +162,7 @@
       else {
          db_log ($SESSID_USERNAME, $fDomain, 'edit_mailbox', $fUsername);
 
-         $result = db_query ("UPDATE $table_alias SET active=$sqlActive WHERE address='$fUsername' AND domain='$fDomain'");
+         $result = db_query ("UPDATE $table_alias SET active='$sqlActive' WHERE address='$fUsername' AND domain='$fDomain'");
          if ($result['rows'] != 1)
          {
             $error = 1;