Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2016:3309-1
HistoryDec 31, 2016 - 3:07 a.m.

Security update for roundcubemail (important)

2016-12-3103:07:18
lists.opensuse.org
29

0.003 Low

EPSS

Percentile

67.8%

JSON

This update for roundcubemail fixes the following issues:

  - A maliciously crafted email could cause untrusted code to be executed
    (cross site scripting using $lt;area href=javascript:...>)
    (boo#982003, CVE-2016-5103)
  - Avoid HTML styles that could cause potential click jacking
    (boo#1001856)
  - A maliciously crafted FROM value could cause extra parameters to be
    passed to the sendmail command (boo#1012493)
  - Avoid sending completely empty text parts for multipart/alternative
    messages
  - Don't create multipart/alternative messages with empty text/plain part
  - Improved validation of FROM argument when sending mails
OSVersionArchitecturePackageVersionFilename
openSUSE13.1noarchroundcubemail< 1.0.9-2.36.1roundcubemail-1.0.9-2.36.1.noarch.rpm

Related

openvas 6
nessus 7
fedora 3
cvelist 1
freebsd 1
suse 2
nvd 1
cve 1
prion 1
openvas
openvas
Fedora Update for roundcubemail FEDORA-2016-d23d2712de
2016-06-19 00:00:00
openSUSE: Security Advisory for roundcubemail (openSUSE-SU-2016:3032-1)
2016-12-08 00:00:00
Fedora Update for roundcubemail FEDORA-2016-396403ec02
2016-06-08 00:00:00
nessus
nessus
Fedora 22 : roundcubemail (2016-e4c559515c)
2016-07-14 00:00:00
FreeBSD : roundcube -- XSS vulnerability (97e86d10-2ea7-11e6-ae88-002590263bf5)
2016-06-10 00:00:00
openSUSE Security Update : roundcubemail (openSUSE-2016-1418)
2016-12-08 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: roundcubemail-1.2.0-1.fc24
2016-06-18 19:56:23
[SECURITY] Fedora 22 Update: roundcubemail-1.2.0-1.fc22
2016-06-05 02:51:49
[SECURITY] Fedora 23 Update: roundcubemail-1.2.0-1.fc23
2016-06-05 02:58:58
cvelist
cvelist
CVE-2016-5103
2016-12-21 16:00:00
freebsd
freebsd
roundcube -- XSS vulnerability
2016-05-06 00:00:00
suse
suse
Security update for roundcubemail (important)
2016-12-07 15:07:23
Security update for roundcubemail (important)
2016-12-07 15:11:46
nvd
nvd
CVE-2016-5103
2016-12-21 16:59:00
cve
cve
CVE-2016-5103
2016-12-21 16:59:00
prion
prion
Design/Logic Flaw
2016-12-21 16:59:00

0.003 Low

EPSS

Percentile

67.8%

JSON
Related for OPENSUSE-SU-2016:3309-1
openvas6nessus7fedora3cvelist1freebsd1suse2nvd1cve1prion1