Bug#791643: marked as done (roundcube: CVE-2015-5381 CVE-2015-5382 CVE-2015-5383)

Thu, 20 Aug 2015 23:57:44 -0700 

Your message dated Fri, 21 Aug 2015 08:49:46 +0200
with message-id <[email protected]>
and subject line Re: roundcube: CVE-2015-5381 CVE-2015-5382 CVE-2015-5383
has caused the Debian Bug report #791643,
regarding roundcube: CVE-2015-5381 CVE-2015-5382 CVE-2015-5383
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
791643: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=791643
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: roundcube
Version: 1.1.1+dfsg.1-1
Severity: important
Tags: security upstream fixed-upstream

Hi,

the following vulnerabilities were published for roundcube.

CVE-2015-5381[0]:
XSS vulnerability in _mbox argument

CVE-2015-5382[1]:
security improvement in contact photo handling

CVE-2015-5383[2]:
potential info disclosure from temp directory

If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2015-5381
[1] https://security-tracker.debian.org/tracker/CVE-2015-5382
[2] https://security-tracker.debian.org/tracker/CVE-2015-5383

Regards,
Salvatore

--- End Message ---
--- Begin Message --- 
Version: 1.1.2+dfsg.1-1

since it was not done via the changelog.

Reagards,

sandro

--
Am Dienstag, 7. Juli 2015, 06:58:05 schrieb Salvatore Bonaccorso:
> Source: roundcube
> Version: 1.1.1+dfsg.1-1
> Severity: important
> Tags: security upstream fixed-upstream
> 
> Hi,
> 
> the following vulnerabilities were published for roundcube.
> 
> CVE-2015-5381[0]:
> XSS vulnerability in _mbox argument
> 
> CVE-2015-5382[1]:
> security improvement in contact photo handling
> 
> CVE-2015-5383[2]:
> potential info disclosure from temp directory
> 
> If you fix the vulnerabilities please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
> 
> For further information see:
> 
> [0] https://security-tracker.debian.org/tracker/CVE-2015-5381
> [1] https://security-tracker.debian.org/tracker/CVE-2015-5382
> [2] https://security-tracker.debian.org/tracker/CVE-2015-5383
> 
> Regards,
> Salvatore

--- End Message ---

Reply via email to