Debian: DSA-5572-1: roundcube security update

Dec. 4, 2023, 8:44 a.m. |

LinuxSecurity Advisories - Debian linuxsecurity.com

Rene Rehme discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not properly set headers when handling attachments. This would allow an attacker to load arbitrary JavaScript code.

attachments attacker code debian dsa handling headers imap javascript roundcube security security update servers solution update webmail

Visit resource

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Debian: DSA-5675-1: chromium Security Advisory Updates 5 days, 2 hours ago | linuxsecurity.com

advisory arbitrary code chromium code +12

Debian: DSA-5674-1: pdns-recursor Security Advisory Updates 5 days, 22 hours ago | linuxsecurity.com

advisory debian denial of service distribution +10

Debian: DSA-5673-1: glibc Security Advisory Updates 1 week, 1 day ago | linuxsecurity.com

advisory application arbitrary code buffer +21

Debian: DSA-5672-1: openjdk-17 Security Advisory Updates 1 week, 2 days ago | linuxsecurity.com

advisory bullseye debian denial of service +16

Debian: DSA-5671-1: openjdk-11 Security Advisory Updates 1 week, 2 days ago | linuxsecurity.com

advisory bullseye debian denial of service +16

Debian: DSA-5670-1: thunderbird Security Advisory Updates 1 week, 2 days ago | linuxsecurity.com

advisory arbitrary code bullseye code +12

Debian: DSA-5669-1: guix Security Advisory Updates 1 week, 2 days ago | linuxsecurity.com

advisory bypass daemon debian +12

Debian: DSA-5668-1: chromium Security Advisory Updates 1 week, 4 days ago | linuxsecurity.com

advisory arbitrary code chromium code +12

Debian: DSA-5667-1: tomcat9 Security Advisory Updates 1 week, 4 days ago | linuxsecurity.com

advisory cve debian dsa +7

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520

View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames

View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA

View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel

View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India

View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York

View on infosec-jobs.com

View more jobs

all InfoSec news

Debian: DSA-5572-1: roundcube security update

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Jobs in InfoSec / Cybersecurity

EY- GDS- Cybersecurity- Staff

Staff Security Operations Engineer

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

Investigations (OSINT) Manager

Security Engineer I, Offensive Security Penetration Testing