roundcube - Debian Package Tracker

general

source: roundcube (main)
version: 1.6.16+dfsg-1
maintainer: Debian Roundcube Maintainers (archive) (DMD)
uploaders: Guilhem Moulin [DMD] – Sandro Knauß [DMD] – Vincent Bernat [DMD]
arch: all
std-ver: 4.7.4
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.4.15+dfsg.1-1+deb11u4
o-o-sec: 1.4.15+dfsg.1-1+deb11u9
o-o-p-u: 1.4.15+dfsg.1-1+deb11u4
oldstable: 1.6.5+dfsg-1+deb12u8
old-sec: 1.6.5+dfsg-1+deb12u9
old-p-u: 1.6.5+dfsg-1+deb12u9
stable: 1.6.15+dfsg-0+deb13u1
stable-sec: 1.6.16+dfsg-0+deb13u1
stable-p-u: 1.6.16+dfsg-0+deb13u1
testing: 1.6.16+dfsg-1
unstable: 1.6.16+dfsg-1

versioned links

1.4.15+dfsg.1-1+deb11u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.4.15+dfsg.1-1+deb11u9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.5+dfsg-1+deb12u8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.5+dfsg-1+deb12u9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.15+dfsg-0+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.16+dfsg-0+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.16+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

roundcube (5 bugs: 0, 5, 0, 0)
roundcube-core (11 bugs: 0, 7, 4, 0)
roundcube-mysql
roundcube-pgsql
roundcube-plugins
roundcube-sqlite3

action needed

Debci reports failed tests high

unstable: pass (log)
The tests ran in 0:07:45
Last run: 2026-05-25T05:27:45.000Z
Previous status: unknown

testing: pass (log)
The tests ran in 0:08:04
Last run: 2026-06-09T02:29:36.000Z
Previous status: unknown

stable: fail (log)
The tests ran in 0:08:24
Last run: 2026-03-08T08:35:12.000Z
Previous status: unknown

Created: 2025-12-17 Last update: 2026-06-09 16:19

A new upstream version is available: 1.7.1 high

A new upstream version 1.7.1 is available, you should consider packaging it.

Created: 2026-05-25 Last update: 2026-06-09 14:01

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2026-06-02 Last update: 2026-06-09 16:30

4 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit ce0683b27c29f6f8470744a8d01dd352f6065250
Author: Guilhem Moulin <guilhem@debian.org>
Date:   Thu May 28 00:15:03 2026 +0200

    d/p/Avoid-dependency-on-new-package-mlocati-ip-lib.patch: Drop type annotations to restore compatibility with PHP<8.
    
    Trixie has PHP8.4 (and Bookworm PHP8.2) so arguably not a big issue, but
    best not to break compatibility with older PHPs in a security or -pu
    update given Roundcube 1.6 is said to work with PHP ≥7.3.

commit 7728380dabc32ad5791eb475a1fc3f9004312467
Author: Guilhem Moulin <guilhem@debian.org>
Date:   Tue May 26 01:14:26 2026 +0200

    typofix

commit 358d336145f79d8dad56e6257a77283b365192ec
Author: Guilhem Moulin <guilhem@debian.org>
Date:   Mon May 25 22:48:56 2026 +0200

    d/changelog: Retroactively mention CVE-2026-48842 to -48849 for 1.6.16+dfsg-1.
    
    Gbp-Dch: Ignore

commit b86f1afefa20c6fdc9998bdb8fb7a1b64824ac8e
Author: Guilhem Moulin <guilhem@debian.org>
Date:   Mon May 25 16:28:40 2026 +0200

    Improve d/p/Avoid-dependency-on-new-package-mlocati-ip-lib.patch.
    
    Since only the last field value may me >255, the first fields fit in a
    single byte and from a trivial regexp check will never exceed
    PHP_INT_MAX.  Moving the carry-over logic outside the loop so it's
    easier to read and understand.

Created: 2026-05-25 Last update: 2026-06-08 15:30

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2026-05-25 Last update: 2026-05-25 15:01

debian/patches: 1 patch to forward upstream low

Among the 26 debian patches available in version 1.6.16+dfsg-1 of the package, we noticed the following issues:

1 patch where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2024-12-21 Last update: 2026-05-25 11:30

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2026-02-09 Last update: 2026-02-09 12:19

news

[rss feed]

[2026-05-29] roundcube 1.6.16+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-05-28] Accepted roundcube 1.6.5+dfsg-1+deb12u9 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-05-28] Accepted roundcube 1.6.16+dfsg-0+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-05-28] Accepted roundcube 1.4.15+dfsg.1-1+deb11u9 (source) into oldoldstable-security (Guilhem Moulin)
[2026-05-27] Accepted roundcube 1.6.16+dfsg-0+deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-05-27] Accepted roundcube 1.6.5+dfsg-1+deb12u9 (source) into oldstable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-05-24] Accepted roundcube 1.6.16+dfsg-1 (source) into unstable (Guilhem Moulin)
[2026-05-11] roundcube REMOVED from testing (Debian testing watch)
[2026-04-06] Accepted roundcube 1.6.5+dfsg-1+deb12u8 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-04-06] Accepted roundcube 1.6.15+dfsg-0+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-04-04] Accepted roundcube 1.6.15+dfsg-0+deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-04-04] Accepted roundcube 1.6.5+dfsg-1+deb12u8 (source) into oldstable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-04-02] roundcube 1.6.15+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-03-30] Accepted roundcube 1.4.15+dfsg.1-1+deb11u8 (source) into oldoldstable-security (Guilhem Moulin)
[2026-03-30] Accepted roundcube 1.6.15+dfsg-1 (source) into unstable (Guilhem Moulin)
[2026-03-24] roundcube 1.6.14+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-03-20] Accepted roundcube 1.6.14+dfsg-1 (source) into unstable (Guilhem Moulin)
[2026-02-21] Accepted roundcube 1.6.5+dfsg-1+deb12u7 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-02-19] Accepted roundcube 1.6.13+dfsg-0+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-02-17] Accepted roundcube 1.4.15+dfsg.1-1+deb11u7 (source) into oldoldstable-security (Guilhem Moulin)
[2026-02-17] Accepted roundcube 1.6.5+dfsg-1+deb12u7 (source) into oldstable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-02-17] Accepted roundcube 1.6.13+dfsg-0+deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2026-02-11] roundcube 1.6.13+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-02-08] Accepted roundcube 1.6.13+dfsg-1 (source) into unstable (Guilhem Moulin)
[2025-12-20] Accepted roundcube 1.6.5+dfsg-1+deb12u6 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2025-12-20] Accepted roundcube 1.6.12+dfsg-0+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Guilhem Moulin)
[2025-12-19] Accepted roundcube 1.6.12+dfsg-0+deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2025-12-19] Accepted roundcube 1.6.5+dfsg-1+deb12u6 (source) into oldstable-security (Debian FTP Masters) (signed by: Guilhem Moulin)
[2025-12-18] Accepted roundcube 1.4.15+dfsg.1-1+deb11u6 (source) into oldoldstable-security (Guilhem Moulin)
[2025-12-16] roundcube 1.6.12+dfsg-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 17
RC: 0
I&N: 12
M&W: 4
F&P: 1
patch: 1

links

homepage
lintian (0, 1)
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker
screenshots
l10n (99, -)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.6.11+dfsg-1