roundcubemail-0.9.4-1.el6 security update
|Release:||Fedora EPEL 6|
|Date Submitted:||2013-09-09 13:32:26|
|Date Released:||2013-09-09 16:52:41|
0.9.4, latest upstream. Require webserver rather than httpd. Two XSS flaws were fixed in roundcube 0.9.3 :
- Fix XSS vulnerability when saving HTML signatures ,
- Fix XSS vulnerability when editing a message "as new" or draft ,
 http://trac.roundcube.net/wiki/Changelog#RELEASE0.9.3  http://trac.roundcube.net/ticket/1489251  http://trac.roundcube.net/changeset/ce5a6496fd6039962ba7424d153278e41ae8761b/github  http://trac.roundcube.net/changeset/93b0a30c1c8aa29d862b587b31e52bcc344b8d16/githubBugs Fixedbodhi - 2013-09-09 13:32:47This update has been submitted for testing by limb.
orion - 2013-09-09 14:57:36Seems to be working okay here.
bodhi - 2013-09-09 16:16:58This update is currently being pushed to the Fedora EPEL 6 testing updates repository.
bodhi - 2013-09-09 17:32:10This update has been pushed to testing
bodhi - 2013-09-23 22:03:59This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes
bodhi - 2013-09-24 12:11:43This update has been submitted for stable by limb.
bodhi - 2013-09-24 14:35:35This update is currently being pushed to the Fedora EPEL 6 stable updates repository.
bodhi - 2013-09-24 16:14:56This update has been pushed to stable