Project

General

Profile

Bug #1738

Vulnerability in roundcube allows information disclosure

Added by Leonardo Arena about 6 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
High
Assignee:
-
Category:
Security
Target version:
Start date:
03/28/2013
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

From RC ML:

After getting reports about a possible vulnerability of Roundcube
which allows an attacker to modify its users preferences in a way that
he/she can then read files from the server, we now published updated
packages as well as patches that fix this security issue.

Please update all your Roundcube installations with the new versions
(0.9-rc2, 0.8.6, 0.7.4) or patch them with the published patches.
Download the latest version from http://roundcube.net/download

Patch for 0.9.x: http://ow.ly/jtQD0
Patch for 0.8.x: http://ow.ly/jtQHM
Patch for 0.7.x: http://ow.ly/jtQK0
Patch for 0.6: http://ow.ly/jtQNd

In order to find out whether one of your users has vulnerable
preferences, you can run the following query on the Roundcube user
database:

SELECT * FROM users WHERE preferences LIKE '%generic_message_footer%'

If this returns any results, you should at least clear the
'preferences' field of that user entry. Or better: entirely block the
user because he or she most likely tried to exploit your system.

And here's some background about the vulnerability:
http://lists.roundcube.net/pipermail/dev/2013-March/022328.html


Subtasks

Bug #1739: [v2.5] Vulnerability in roundcube allows information disclosureClosed

Bug #1740: [v2.4] Vulnerability in roundcube allows information disclosureClosed

Bug #1741: [v2.3] Vulnerability in roundcube allows information disclosureClosed

Bug #1742: [v2.2] Vulnerability in roundcube allows information disclosureClosed

Associated revisions

Revision edb0fdb8 (diff)
Added by Leonardo Arena about 6 years ago

main/roundcubemail: security upgrade to 0.8.6. Fixes #1738

History

#1 Updated by Anonymous about 6 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Natanael Copa about 6 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF