Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <>
Subject: Accepted roundcube 1.3.11+dfsg.1-1~deb10u1 (source) into stable->embargoed, stable
Date: Tue, 05 May 2020 13:29:34 +0000
Signed by: Guilhem Moulin <guilhem@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 04 May 2020 14:19:18 +0200
Source: roundcube
Architecture: source
Version: 1.3.11+dfsg.1-1~deb10u1
Distribution: buster-security
Urgency: high
Maintainer: Debian Roundcube Maintainers <pkg-roundcube-maintainers@lists.alioth.debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Closes: 959140 959142
Changes:
 roundcube (1.3.11+dfsg.1-1~deb10u1) buster-security; urgency=high
 .
   * New security upstream release, with fixes for:
     - CVE-2020-12625: Cross-Site Scripting (XSS) vulnerability via malicious
       HTML messages (closes: #959140)
     - CVE-2020-12626: CSRF attack can cause an authenticated user to be logged
       out (closes: #959142)
Checksums-Sha1:
 a9953464e3b35163646a94f4cc8f0faa5f0e4d33 2487 roundcube_1.3.11+dfsg.1-1~deb10u1.dsc
 d47bbae94d3ed2eaca60065db8a65c7913723296 2185400 roundcube_1.3.11+dfsg.1.orig.tar.xz
 4692381c0a21b105c2c15115a19c3aabab47276a 3054936 roundcube_1.3.11+dfsg.1-1~deb10u1.debian.tar.xz
 aa36928b180d62bbe6c088d34e7e1afaa6898e6b 9357 roundcube_1.3.11+dfsg.1-1~deb10u1_amd64.buildinfo
Checksums-Sha256:
 bddf1020ec140aa907a03dc472e4a569a44ccbaea9a9b150e9f13620cde1e1cb 2487 roundcube_1.3.11+dfsg.1-1~deb10u1.dsc
 99b7809826dbfadb469e4375fd8e41e6195e3968ce9557369d68a4ad3b96fdf9 2185400 roundcube_1.3.11+dfsg.1.orig.tar.xz
 2a39461415ab97759727bf371db25a8e33c649ef9f5f0daa4f31b850c8abef78 3054936 roundcube_1.3.11+dfsg.1-1~deb10u1.debian.tar.xz
 32b7c7007f2092b3b2c80d1db19bb2eb4f5b3234ff6645e9679d48360e8cb167 9357 roundcube_1.3.11+dfsg.1-1~deb10u1_amd64.buildinfo
Files:
 e52eafbe0b277feeef2ab9ff4f2bdf5d 2487 web optional roundcube_1.3.11+dfsg.1-1~deb10u1.dsc
 3530291ba4a3147ceeb34cd800234e2e 2185400 web optional roundcube_1.3.11+dfsg.1.orig.tar.xz
 0c0902cc0495dea889ea247797236daa 3054936 web optional roundcube_1.3.11+dfsg.1-1~deb10u1.debian.tar.xz
 117145982550787673fe1f0aae0c921d 9357 web optional roundcube_1.3.11+dfsg.1-1~deb10u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=DXYM
-----END PGP SIGNATURE-----
News for package roundcube
