Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2016:3038-1
HistoryDec 07, 2016 - 3:11 p.m.

Security update for roundcubemail (important)

2016-12-0715:11:46
lists.opensuse.org
10

0.003 Low

EPSS

Percentile

69.7%

JSON

roundcubemail was updated to version 1.1.7 and fixes the following issues:

  • Update to 1.1.7

    • A maliciously crafted FROM value could cause extra parameters to be
      passed to the sendmail command (boo#1012493)
    • A maliciously crafted email could cause untrusted code to be executed
      (cross site scripting using $lt;area href=javascript:…>)
      (boo#982003, CVE-2016-5103)
    • Avoid HTML styles that could cause potential click jacking
      (boo#1001856)

  • Update to 1.1.5

    • Fixed security issue in DBMail driver of password plugin
      (CVE-2015-2181, boo#976988)

Related

nessus 14
openvas 9
fedora 6
cvelist 2
freebsd 1
suse 2
nvd 2
ubuntucve 1
prion 2
cve 2
debiancve 1
mageia 2
nessus
nessus
openSUSE Security Update : roundcubemail (openSUSE-2016-1419)
2016-12-12 00:00:00
FreeBSD : roundcube -- XSS vulnerability (97e86d10-2ea7-11e6-ae88-002590263bf5)
2016-06-10 00:00:00
Fedora 22 : roundcubemail (2016-e4c559515c)
2016-07-14 00:00:00
openvas
openvas
openSUSE: Security Advisory for roundcubemail (openSUSE-SU-2016:3038-1)
2016-12-08 00:00:00
Fedora Update for roundcubemail FEDORA-2016-d23d2712de
2016-06-19 00:00:00
openSUSE: Security Advisory for roundcubemail (openSUSE-SU-2016:3032-1)
2016-12-08 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: roundcubemail-1.2.0-1.fc24
2016-06-18 19:56:23
[SECURITY] Fedora 22 Update: roundcubemail-1.2.0-1.fc22
2016-06-05 02:51:49
[SECURITY] Fedora 23 Update: roundcubemail-1.2.0-1.fc23
2016-06-05 02:58:58
cvelist
cvelist
CVE-2016-5103
2016-12-21 16:00:00
CVE-2015-2181
2017-01-30 22:00:00
freebsd
freebsd
roundcube -- XSS vulnerability
2016-05-06 00:00:00
suse
suse
Security update for roundcubemail (important)
2016-12-31 03:07:18
Security update for roundcubemail (important)
2016-12-07 15:07:23
nvd
nvd
CVE-2015-2181
2017-01-30 22:59:00
CVE-2016-5103
2016-12-21 16:59:00
ubuntucve
ubuntucve
CVE-2015-2181
2017-01-30 00:00:00
prion
prion
Buffer overflow
2017-01-30 22:59:00
Design/Logic Flaw
2016-12-21 16:59:00
cve
cve
CVE-2015-2181
2017-01-30 22:59:00
CVE-2016-5103
2016-12-21 16:59:00
debiancve
debiancve
CVE-2015-2181
2017-01-30 22:59:00
mageia
mageia
Updated roundcubemail package fixes security vulnerabilities
2015-10-14 23:28:21
Updated roundcubemail packages fix security vulnerabilities
2016-04-29 20:21:35

0.003 Low

EPSS

Percentile

69.7%

JSON
Related for OPENSUSE-SU-2016:3038-1
nessus14openvas9fedora6cvelist2freebsd1suse2nvd2ubuntucve1prion2cve2debiancve1mageia2