[Git][security-tracker-team/security-tracker][master] Add CVE-2020-1867{0,1}/roundcube
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 25 22:50:35 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7770059f by Salvatore Bonaccorso at 2021-06-25T23:50:03+02:00
Add CVE-2020-1867{0,1}/roundcube
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -68825,9 +68825,15 @@ CVE-2020-18673
CVE-2020-18672
RESERVED
CVE-2020-18671 (Cross Site Scripting (XSS) vulnerability in Roundcube Mail <=1.4.4 ...)
- TODO: check
+ - roundcube 1.4.5+dfsg.1-1
+ [buster] - roundcube 1.3.13+dfsg.1-1~deb10u1
+ NOTE: https://github.com/roundcube/roundcubemail/issues/7406
+ NOTE: https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12
CVE-2020-18670 (Cross Site Scripting (XSS) vulneraibility in Roundcube mail .4.4 via d ...)
- TODO: check
+ - roundcube 1.4.5+dfsg.1-1
+ [buster] - roundcube 1.3.13+dfsg.1-1~deb10u1
+ NOTE: https://github.com/roundcube/roundcubemail/issues/7406
+ NOTE: https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12
CVE-2020-18669
RESERVED
CVE-2020-18668 (Cross Site Scripting (XSS) vulnerabililty in WebPort <=1.19.1 via t ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7770059f857437ec0d090f0cc5eb7145348cbab8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7770059f857437ec0d090f0cc5eb7145348cbab8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210625/02ca1e96/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list