On Sun, 28 Feb 2010 09:34:53 +0800, Zhang Huangbin <[email protected]> wrote: > Hi, all. > > I saw there's a fix in trunk: > > - Fix CVE-2010-0464: Disable DNS prefetching (#1486449) > http://trac.roundcube.net/changeset/3293 > > Do we need to patch old versions? > > Thanks :)
If the issue is a concern for you, please apply the patch. If you are using a package of RoundCube provided by your OS, you may not need to as several packagers of 0.3.1 have chosen to incorporate an earlier version of the patch. -Albert _______________________________________________ List info: http://lists.roundcube.net/dev/
