[Pkg-roundcube-maintainers] Processed: roundcube: cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages

Debian Bug Tracking System owner at bugs.debian.org
Mon Oct 16 19:27:05 BST 2023


Processing control commands:

> found -1 1.3.17+dfsg.1-1~deb10u3
Bug #1054079 [src:roundcube] roundcube: cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages
The source 'roundcube' and version '1.3.17+dfsg.1-1~deb10u3' do not appear to match any binary packages
Marked as found in versions roundcube/1.3.17+dfsg.1-1~deb10u3.
> found -1 1.4.14+dfsg.1-1~deb11u1
Bug #1054079 [src:roundcube] roundcube: cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages
Marked as found in versions roundcube/1.4.14+dfsg.1-1~deb11u1.
> found -1 1.6.3+dfsg-1~deb12u1
Bug #1054079 [src:roundcube] roundcube: cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages
Marked as found in versions roundcube/1.6.3+dfsg-1~deb12u1.
> forwarded -1 https://github.com/roundcube/roundcubemail/issues/9168
Bug #1054079 [src:roundcube] roundcube: cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages
Set Bug forwarded-to-address to 'https://github.com/roundcube/roundcubemail/issues/9168'.

-- 
1054079: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems



More information about the Pkg-roundcube-maintainers mailing list