| Summary: | <mail-client/roundcube-1.4.10: XSS vulnerability (CVE-2020-35730) | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Sam James <sam> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | minor | CC: | candrews, titanofold, web-apps |
| Priority: | Normal | Keywords: | ALLARCHES, CC-ARCHES |
| Version: | unspecified | Flags: | nattka:
sanity-check-
|
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://roundcube.net/news/2020/12/27/security-updates-1.4.10-1.3.16-and-1.2.13 | ||
| Whiteboard: | B4 [noglsa] | ||
| Package list: |
mail-client/roundcube-1.4.10
|
Runtime testing required: | --- |
|
Description
Sam James
2020-12-28 04:20:52 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4e43de3d362f1052d814e2a387288f5586557976 commit 4e43de3d362f1052d814e2a387288f5586557976 Author: Craig Andrews <candrews@gentoo.org> AuthorDate: 2020-12-31 14:02:07 +0000 Commit: Craig Andrews <candrews@gentoo.org> CommitDate: 2020-12-31 14:21:06 +0000 mail-client/roundcube: 1.4.10 version bump Bug: https://bugs.gentoo.org/762136 Package-Manager: Portage-3.0.12, Repoman-3.0.2 Signed-off-by: Craig Andrews <candrews@gentoo.org> mail-client/roundcube/Manifest | 1 + mail-client/roundcube/roundcube-1.4.10.ebuild | 96 +++++++++++++++++++++++++++ 2 files changed, 97 insertions(+) Thank you! Please proceed with stabilization when ready. amd64 arm ppc ppc64 sparc x86 (ALLARCHES) done all arches done Please cleanup, thanks! Unable to check for sanity:
> no match for package: mail-client/roundcube-1.4.10
Thank you! All done. :) |