Sebastien Delafond pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
300ca1ba by Sébastien Delafond at 2020-06-09T07:48:27+02:00
Add newly assigned CVEs for roundcube
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -425,11 +425,11 @@ CVE-2018-21236 (An issue was discovered in Foxit Reader
before 2.4.4. It has a N
NOT-FOR-US: Foxit Reader
CVE-2018-21235 (An issue was discovered in Foxit E-mail advertising system
before Sept ...)
NOT-FOR-US: Foxit E-mail advertising system
-CVE-2020-XXXX [Cross-Site Scripting (XSS) vulnerability via malicious XML
messages]
+CVE-2020-13965 [Cross-Site Scripting (XSS) vulnerability via malicious XML
messages]
- roundcube 1.4.5+dfsg.1-1 (bug #962124)
NOTE: 1.4.x:
https://github.com/roundcube/roundcubemail/commit/ccaccae6653031b809b4347a60021951e19a0e43
NOTE: 1.3.x:
https://github.com/roundcube/roundcubemail/commit/884eb611627ef2bd5a2e20e02009ebb1eceecdc3
-CVE-2020-XXXX [Cross-Site Scripting (XSS) vulnerability in template object
'username']
+CVE-2020-13964 [Cross-Site Scripting (XSS) vulnerability in template object
'username']
- roundcube 1.4.5+dfsg.1-1 (bug #962123)
NOTE: 1.4.x:
https://github.com/roundcube/roundcubemail/commit/4beec65d40c5e5b1f2bace935c110baf05e10ae5
NOTE: 1.3.x:
https://github.com/roundcube/roundcubemail/commit/37e2bc745723ef6322f0f785aefd0b9313a40f19
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/300ca1ba11d08bf88cd1d8d8b58296de3776473d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/300ca1ba11d08bf88cd1d8d8b58296de3776473d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
