TEMP-1141495-8A7D5D

NameTEMP-1141495-8A7D5D
DescriptionSSRF bypass via specific local address URLs
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs1141495

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
roundcube (PTS)bullseye1.4.15+dfsg.1-1+deb11u4vulnerable
bullseye (security)1.4.15+dfsg.1-1+deb11u9vulnerable
bookworm1.6.5+dfsg-1+deb12u8vulnerable
bookworm (security)1.6.5+dfsg-1+deb12u9vulnerable
trixie1.6.15+dfsg-0+deb13u1vulnerable
trixie (security)1.6.16+dfsg-0+deb13u1vulnerable
forky, sid1.6.17+dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
roundcubesource(unstable)1.6.17+dfsg-11141495

Notes

https://github.com/roundcube/roundcubemail/commit/294c7da6e7284166f040cef8607b677d459e0786 (1.6.17)

Search for package or bug name: Reporting problems