Updated roundcubemail package fixes security vulnerability
Publication date: 03 Sep 2013Modification date: 03 Sep 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-5645
Description
XSS vulnerabilities when saving HTML signatures and when editing a message "as new" or draft in roundcubemail before 0.9.3 (CVE-2013-5645).
References
SRPMS
2/core
- roundcubemail-0.7.4-1.2.mga2
3/core
- roundcubemail-0.9.3-1.mga3