[RCD] Security updates 1.4.10, 1.3.16 and 1.2.13 released
Thomas Bruederli
thomas at roundcube.net
Sun Dec 27 23:11:13 CET 2020
Dear subscribers
We just published security updates to the stable version 1.4 and the LTS
versions 1.3 and 1.2 of Roundcube Webmail. They all contain fixes to a
recently reported stored XSS vulnerability found and kindly reported by
Alex Birnberg (birnbergalex at gmail.com).
The 1.4.10 release also contains a few general improvements from our issue
tracker.
See the full changelogs in the release notes on the Github download pages
for the updated versions:
https://github.com/roundcube/roundcubemail/releases/tag/1.4.10
https://github.com/roundcube/roundcubemail/releases/tag/1.3.16
https://github.com/roundcube/roundcubemail/releases/tag/1.2.13
We strongly recommend to update all productive installations of Roundcube
with these new versions.
Download them from https://roundcube.net/download/
Best wishes and a happy new year!
Alec & Thomas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.roundcube.net/pipermail/dev/attachments/20201227/7d2fe068/attachment.html>
More information about the dev
mailing list