[Pkg-roundcube-maintainers] Bug#776700: roundcube: CVE-2015-1433: Cross-site scripting vulnerability fixed in 1.0.5
Marian Sigler
m at qjym.de
Mon Feb 2 22:43:19 UTC 2015
Control: -1 reopen
Tags: wheezy
> Source-Version: 0.9.5+dfsg1-4.2
>
> We believe that the bug you reported is fixed in the latest version of
> roundcube, which is due to be installed in the Debian FTP archive.
I did a quick(!) check of the code on wheezy and it seems to be the
same, thus affected, too.
Marian
More information about the Pkg-roundcube-maintainers
mailing list