roundcubemail-1.6.5-1.fc38

Read Time:36 Second

FEDORA-2023-0fd9865145

Packages in this update:

roundcubemail-1.6.5-1.fc38

Update description:

Release 1.6.5

Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE (#9171)
Fix duplicated Inbox folder on IMAP servers that do not use Inbox folder with all capital letters (#9166)
Fix PHP warnings (#9174)
Fix UI issue when dealing with an invalid managesieve_default_headers value (#9175)
Fix bug where images attached to application/smil messages weren’t displayed (#8870)
Fix PHP string replacement error in utils/error.php (#9185)
Fix regression where smtp_user did not allow pre/post strings before/after %u placeholder (#9162)
Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download

Read More

roundcubemail-1.6.5-1.fc37

Read Time:36 Second

FEDORA-2023-70578c5599

Packages in this update:

roundcubemail-1.6.5-1.fc37

Update description:

Release 1.6.5

Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE (#9171)
Fix duplicated Inbox folder on IMAP servers that do not use Inbox folder with all capital letters (#9166)
Fix PHP warnings (#9174)
Fix UI issue when dealing with an invalid managesieve_default_headers value (#9175)
Fix bug where images attached to application/smil messages weren’t displayed (#8870)
Fix PHP string replacement error in utils/error.php (#9185)
Fix regression where smtp_user did not allow pre/post strings before/after %u placeholder (#9162)
Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download

Read More

roundcubemail-1.5.6-1.el9

Read Time:11 Second

FEDORA-EPEL-2023-ffe5c0ac79

Packages in this update:

roundcubemail-1.5.6-1.el9

Update description:

Release 1.5.6

Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download

Read More

ZDI-23-1589: VMware Workstation UHCI Uninitialized Variable Information Disclosure Vulnerability

Read Time:17 Second

This vulnerability allows local attackers to disclose sensitive information on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.0. The following CVEs are assigned: CVE-2023-34044.

Read More