[Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2019-10740/roundcube
Salvatore Bonaccorso
carnil at debian.org
Sun Jun 16 14:06:04 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
98ea3524 by Salvatore Bonaccorso at 2019-06-16T13:05:31Z
Reference commits for CVE-2019-10740/roundcube
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5264,6 +5264,8 @@ CVE-2019-10740 (In Roundcube Webmail 1.3.4, an attacker in possession of S/MIME
[buster] - roundcube <ignored> (Relies on php-crypt-gpg, not in buster)
[stretch] - roundcube <ignored> (Relies on php-crypt-gpg, not in stretch. Old version in 1.3 doesn't verify signature anyway)
NOTE: https://github.com/roundcube/roundcubemail/issues/6638
+ NOTE: https://github.com/roundcube/roundcubemail/commit/de25226d310de11f6a9eb0aa7ea1c90d82dc70d8 (release-1.3)
+ NOTE: https://github.com/roundcube/roundcubemail/commit/8fe12e2fadac9b1ce212341ca3632f85781cfea4 (master)
CVE-2019-10739
RESERVED
CVE-2019-10738
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/98ea35243ca2547bfb5ee168bc720cb36a1a5487
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/98ea35243ca2547bfb5ee168bc720cb36a1a5487
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190616/f79b6665/attachment.html>
More information about the debian-security-tracker-commits
mailing list