FEDORA-EPEL-2017-b490886f67 — security update for roundcubemail — Fedora Updates System

stable

roundcubemail-1.0.12-1.el6

FEDORA-EPEL-2017-b490886f67 created by remi 8 years ago for Fedora EPEL 6

Upstream announcement for Version 1.0.12

This is a security update to the LTS version 1.0. It closes a potential file disclosure vulnerability discovered in the file-based attachment plugins. While there's currently no exploit path for Roundcube 1.0.x the fix was nevertheless back-ported to protect from yet unknown zero-day exploits.

It's considered stable and we recommend to update all productive installations of Roundcube 1.0.x with this version if for some reason you're not able to upgrade to the latest stable version. Please do backup your data before updating!

Changelog

Fix file disclosure vulnerability caused by insufficient input validation CVE-2017-16651 (#6026)

This update has been submitted for testing by remi.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by remi.

This update has been submitted for stable by remi.

This update has been pushed to stable.

Please log in to add feedback.

Metadata

Type

security

Karma

0

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

3

Stable by Time

disabled

Dates

submitted

8 years ago

in testing

8 years ago

in stable

8 years ago

Builds

1

roundcubemail-1.0.12-1.el6

roundcubemail-1.0.12-1.el6

Automated Test Results

None

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 26.4.0 on bodhi-web-6f874fb45-tc56b.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

• Composes • Legal • Privacy policy •