rpm/roundcubemail
SHA256
1
0
Fork 0
forked from pool/roundcubemail
Code Pull Requests Activity

OBS-URL: https://build.opensuse.org/package/show/server:php:applications/roundcubemail?expand=0&rev=175

Browse Source
This commit is contained in:
Aeneas Jaißle 2024-08-06 15:49:48 +00:00 committed by Git OBS Bridge
parent 482045f6a9
commit 87af86c8fb
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roundcubemail.changes
View File

@ -4,9 +4,9 @@ Tue Aug 6 15:14:35 UTC 2024 - Aeneas Jaißle <aj@ajaissle.de>
- update to 1.6.8 - update to 1.6.8
This is a security update to the stable version 1.6 of Roundcube Webmail. This is a security update to the stable version 1.6 of Roundcube Webmail.
It provides fixes to recently reported security vulnerabilities: It provides fixes to recently reported security vulnerabilities:
* Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024-42009] * Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024-42009] [bsc#1228900]
* Fix XSS vulnerability in serving of attachments other than HTML or SVG [CVE-2024-42008] * Fix XSS vulnerability in serving of attachments other than HTML or SVG [CVE-2024-42008]
* Fix information leak (access to remote content) via insufficient CSS filtering [CVE-2024-42010] * Fix information leak (access to remote content) via insufficient CSS filtering [CVE-2024-42010] [bsc#1228901]
- For further changes, see https://github.com/roundcube/roundcubemail/releases/tag/1.6.8 - For further changes, see https://github.com/roundcube/roundcubemail/releases/tag/1.6.8