DSA-6137-1

NameDSA-6137-1
Descriptionroundcube - security update
SourceDebian
ReferencesCVE-2026-25916, CVE-2026-26079

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
roundcube (PTS)bookworm1.6.5+dfsg-1+deb12u6vulnerable
bookworm (security)1.6.5+dfsg-1+deb12u7fixed
trixie1.6.12+dfsg-0+deb13u1vulnerable
trixie (security)1.6.13+dfsg-0+deb13u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
roundcubesourcebookworm1.6.5+dfsg-1+deb12u7
roundcubesourcetrixie1.6.13+dfsg-0+deb13u1

Search for package or bug name: Reporting problems