ALT Linux Team

Package roundcube update in sisyphus on 2021-02-09

ALT-PU-2021-1239-1

Package roundcube updated to version 1.4.11-alt1 for branch sisyphus in task 265994.

Closed vulnerabilities

Published: 2021-02-09
Modified: 2024-11-21

CVE-2021-26925

Roundcube before 1.4.11 allows XSS via crafted Cascading Style Sheets (CSS) token sequences during HTML email rendering.

Severity: MEDIUM (5.4) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top