Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
98ea3524 by Salvatore Bonaccorso at 2019-06-16T13:05:31Z
Reference commits for CVE-2019-10740/roundcube
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5264,6 +5264,8 @@ CVE-2019-10740 (In Roundcube Webmail 1.3.4, an attacker
in possession of S/MIME
[buster] - roundcube <ignored> (Relies on php-crypt-gpg, not in buster)
[stretch] - roundcube <ignored> (Relies on php-crypt-gpg, not in
stretch. Old version in 1.3 doesn't verify signature anyway)
NOTE: https://github.com/roundcube/roundcubemail/issues/6638
+ NOTE:
https://github.com/roundcube/roundcubemail/commit/de25226d310de11f6a9eb0aa7ea1c90d82dc70d8
(release-1.3)
+ NOTE:
https://github.com/roundcube/roundcubemail/commit/8fe12e2fadac9b1ce212341ca3632f85781cfea4
(master)
CVE-2019-10739
RESERVED
CVE-2019-10738
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/98ea35243ca2547bfb5ee168bc720cb36a1a5487
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/98ea35243ca2547bfb5ee168bc720cb36a1a5487
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
