FEDORA-EPEL-2025-5c25fd8e2d — security update for roundcubemail — Fedora Updates System

stable

roundcubemail-1.5.10-1.el9

FEDORA-EPEL-2025-5c25fd8e2d created by remi 5 months ago for Fedora EPEL 9

This is a security update to the stable version 1.5 of Roundcube Webmail. It provides fixes to recently reported security vulnerabilities:

Fix Post-Auth RCE via PHP Object Deserialization reported by firs0v.

This version is considered stable and we recommend to update all productive installations of Roundcube 1.5.x with it. Please do backup your data before updating!

CHANGELOG

Fix current script state after initial scripts creation in managesieve_kolab_master mode
Fix regression causing inline SVG images to be missing in mail preview (#9644)

This update has been submitted for testing by remi.

This update's test gating status has been changed to 'ignored'.

remi edited this update.

This update has been pushed to testing.

This update has been submitted for stable by bodhi.

jbates provided feedback 5 months ago

karma

BZ#2369707 CVE-2025-49113 roundcubemail: From CVEorg collector [epel-9]

This update has been pushed to stable.

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

1

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

3

Stable by Time

7 days

Dates

submitted

5 months ago

in testing

5 months ago

in stable

5 months ago

modified

5 months ago

approved

5 months ago

Builds

1

roundcubemail-1.5.10-1.el9

BZ#2369707 CVE-2025-49113 roundcubemail: From CVEorg collector [epel-9]

0

1

roundcubemail-1.5.10-1.el9

Automated Test Results

ignored

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-10-5kvt6.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

• Composes • Legal • Privacy policy •