[RCD] Security updates 0.8.6 and 0.7.3 for save-pref vulnerability

Daniel Kahn Gillmor dkg at fifthhorseman.net
Thu Mar 28 03:55:04 CET 2013

On 03/27/2013 10:38 PM, David Mohr wrote:
> On 2013-03-27 16:09, Daniel Kahn Gillmor wrote:
>> On 03/27/2013 06:02 PM, Thomas Bruederli wrote:
>>> Please update all your Roundcube installations with the new versions
>>> (0.9-rc2, 0.8.6, 0.7.4) or patch them with the published patches.
>> Thanks for this work.  I don't yet see the tags for these releases in
>> the git repo at https://github.com/roundcube/roundcubemail
> It's probably a mute point, but I see the tags, they're just not
> prefixed by 'v' like the rest.

Well, they weren't there when i wrote my earlier e-mail, and they're
there now.  Looks like they were made by (and probably pushed by)
Thomas.  Thanks for taking care of this, Thomas!


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1027 bytes
Desc: OpenPGP digital signature
URL: <http://lists.roundcube.net/pipermail/dev/attachments/20130327/cdfb8951/attachment.sig>

More information about the dev mailing list