[BSA-085] Security Update for roundcube
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Package : roundcube
Vulnerability : design error
Problem type : remote
Debian-specific: no
CVE ID : CVE-2013-6172
Debian Bug : 727668
It was discovered that roundcube, a skinnable AJAX based webmail
solution for IMAP servers, does not properly sanitize the _session
parameter in steps/utils/save_pref.inc during saving preferences. The
vulnerability can be exploited to overwrite configuration settings and
subsequently allowing random file access, manipulated SQL queries and
even code execution.
roundcube in the oldstable distribution (squeeze) is not affected by
this problem.
For backports for the oldstable distribution (squeeze-backports-sloppy),
this problem has been fixed in 0.9.5-1~bpo60+1.
For the stable distribution (wheezy), this problem has been fixed in
version 0.7.2-9+deb7u1.
For backports for the stable distribution (wheezy-backports),
this problem has been fixed in 0.9.5-1~bpo70+1.
For the unstable distribution (sid), this problem has been fixed in
version 0.9.4-1.1.
We recommend that you upgrade your roundcube packages.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)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=MUTF
-----END PGP SIGNATURE-----
Reply to: