[Pkg-roundcube-maintainers] Bug#775576: CVE-2014-9587
carnil at debian.org
Tue Jan 20 18:07:18 UTC 2015
On Sun, Jan 18, 2015 at 12:03:51PM +0100, Vincent Bernat wrote:
> I have asked for removal of roundcube from testing to avoid shipping it
> in Jessie. None of the maintainers can commit to have enough time for
> security support and the current version is already a bit outdated. I'll
> try to backport the fix to stable.
Should btw due to this a RC bug be opened in roundcube so that it will
prevent migration to testing also after the release until more
maintenance "manpower" can be found?
Just wondering to avoid similar situation later on.
More information about the Pkg-roundcube-maintainers