package release.debian.org tags 964456 = stretch pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian stretch. Thanks for your contribution! Upload details ============== Package: roundcube Version: 1.2.3+dfsg.1-4+deb9u6 Explanation: fix cross-site scripting issue via HTML messages with malicious svg/namespace [CVE-2020-15562]