On Fri, 22 Sep 2023 at 10:56:59 +0300, Guilhem Moulin wrote:
> I'll suggest debdiffs targetting {bullseye,bookworm}-security after
> the week-end.
Oh, didn't see the Security Team tagged this as no-dsa. Will target
{bullseye,bookworm} then.
--
Guilhem.
signature.asc
Description: PGP signature
Control: retitle -1 roundcube: CVE-2023-43770: XSS vulnerability in handling of
linkrefs in plain text messages
On Mon, 18 Sep 2023 at 13:59:47 +0200, Guilhem Moulin wrote:
> I requested a CVE ID for this issue.
CVE-2023-43770 for this. I'll suggest debdiffs targetting {bullseye,bookworm}-
secu
I requested a CVE ID for this issue.
--
Guilhem.
signature.asc
Description: PGP signature
Package: roundcube
Severity: normal
Tags: upstream
Dear Maintainer,
upstream released version 1.6.3 which fixes a security issue with the
1.6.x and I kindly ask you to apply the fix for the version in debian
stable.
https://roundcube.net/news/2023/09/15/security-update-1.6.3-released
Best reg
4 matches
Mail list logo
