We just published a new release which fixes a recently reported XSS vulnerability as an update to the stable 0.5 branch. 0.5.4 fixes it. Upstream URL: http://trac.roundcube.net/ticket/1488030
roundcube-0.5.4 is in tree. Arch teams, please, stabilize.
amd64 ok
amd64 done. Thanks Agostino
x86 ok
ppc/ppc64 stable
x86 stable, thanks Luca
arm stable, all arches done.
Thanks, everyone. Closing noglsa for XSS.