Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Infosec News Nuggets — July 15, 2026 – AboutDFIR

    July 15, 2026

    Helping small businesses with free, hands-on cyber consultancy

    July 15, 2026

    US charges alleged operators of Russian bulletproof hosting service

    July 15, 2026
    Facebook X (Twitter) Instagram
    • Demos
    • Technology
    • Gaming
    • Buy Now
    Facebook X (Twitter) Instagram Pinterest Vimeo
    Canadian Cyber WatchCanadian Cyber Watch
    • Home
    • News
    • Alerts
    • Tips
    • Tools
    • Industry
    • Incidents
    • Events
    • Education
    Subscribe
    Canadian Cyber WatchCanadian Cyber Watch
    Home»Alerts»Debian Roundcube Important Info Disclosure Vulner 2026-35537
    Alerts

    Debian Roundcube Important Info Disclosure Vulner 2026-35537

    adminBy adminApril 4, 2026No Comments1 Min Read
    Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
    Share
    Facebook Twitter LinkedIn Pinterest Email


    
    - -------------------------------------------------------------------------
    Debian Security Advisory DSA-6196-1                   security@debian.org
    https://www.debian.org/security/                     Salvatore Bonaccorso
    April 04, 2026                        https://www.debian.org/security/faq
    - -------------------------------------------------------------------------
    
    Package        : roundcube
    CVE ID         : CVE-2026-35537 CVE-2026-35538 CVE-2026-35539 CVE-2026-35540
                     CVE-2026-35541 CVE-2026-35542 CVE-2026-35543 CVE-2026-35544
                     CVE-2026-35545
    Debian Bug     : 1131182 1132268
    
    Multiple vulnerabilities were discovered in roundcube, a skinnable AJAX
    based webmail solution for IMAP servers, which could result in
    information disclosure, IMAP injection, CSRF bypass, bypass of remote
    image blocking, cross-site scripting, access control bypass, or
    privilege escalation.
    
    For the oldstable distribution (bookworm), these problems have been fixed
    in version 1.6.5+dfsg-1+deb12u8.
    
    For the stable distribution (trixie), these problems have been fixed in
    version 1.6.15+dfsg-0+deb13u1.
    
    We recommend that you upgrade your roundcube packages.
    
    For the detailed security status of roundcube please refer to its
    security tracker page at:
    https://security-tracker.debian.org/tracker/roundcube
    
    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/
    
    Mailing list: debian-security-announce@lists.debian.org
    





    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Previous ArticleArbitrary XML file write in FCConfig
    Next Article Axios npm hack used fake Teams error fix to hijack maintainer account
    admin
    • Website

    Related Posts

    Alerts

    CISA Adds One Known Exploited Vulnerability to Catalog

    June 12, 2026
    Alerts

    FreePBX security advisory (AV26–596) – Canadian Centre for Cyber Security

    June 12, 2026
    Alerts

    SSA-879734 V1.0: Multiple Vulnerabilities in SCALANCE XM-400/XR-500 before V6.6.1

    June 12, 2026
    Add A Comment

    Comments are closed.

    Demo
    Top Posts

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202634 Views
    Stay In Touch
    • Facebook
    • YouTube
    • TikTok
    • WhatsApp
    • Twitter
    • Instagram
    Latest Reviews
    85
    Featured

    Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

    January 15, 2021 Featured
    8.1
    Uncategorized

    A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

    January 15, 2021 Uncategorized
    8.9
    Editor's Picks

    DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

    January 15, 2021 Editor's Picks

    Subscribe to Updates

    Get the latest tech news from FooBar about tech, design and biz.

    Demo
    Most Popular

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202634 Views
    Our Picks

    Infosec News Nuggets — July 15, 2026 – AboutDFIR

    July 15, 2026

    Helping small businesses with free, hands-on cyber consultancy

    July 15, 2026

    US charges alleged operators of Russian bulletproof hosting service

    July 15, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Facebook X (Twitter) Instagram Pinterest
    • Home
    • Technology
    • Gaming
    • Phones
    • Buy Now
    © 2026 ThemeSphere. Designed by ThemeSphere.

    Type above and press Enter to search. Press Esc to cancel.