Bugzilla – Bug 1029035
VUL-0: CVE-2017-6820: roundcubemail: XSS issue in handling of a style tag inside of an svg element
Last modified: 2019-11-06 15:47:07 UTC
Ref: http://seclists.org/oss-sec/2017/q1/583 =============================================== Hi I have requested a CVE for the following Roundcube issue, wich got assigned CVE-2017-6820[*]. rcube_utils.php in Roundcube before 1.1.8 and before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.. https://github.com/roundcube/roundcubemail/releases/tag/1.1.8 https://github.com/roundcube/roundcubemail/releases/tag/1.2.4 https://roundcube.net/news/2017/03/10/updates-1.2.4-and-1.1.8-released Upstream fix (sequence of two commits): https://github.com/roundcube/roundcubemail/commit/fa2824fdcd44af3f970b2797feb47652482c8305 https://github.com/roundcube/roundcubemail/commit/cbd35626f7db7855f3b5e2db00d28ecc1554e9f4 Regards, Salvatore [*] ideally that would be done by the upstream project on it's own before publishing an issue in case it was privately reported, since it was not immediately clear to me if one was already requested or some other vendors/distributors have done it. =============================================== https://security-tracker.debian.org/tracker/CVE-2017-6820 https://software.opensuse.org/package/roundcubemail TW: 1.2.3 42.{1,2}: 1.1.7
TW: https://build.opensuse.org/request/show/480711 42.{1,2}: https://build.opensuse.org/request/show/480709
accepted into maintenance
release for leap
openSUSE-SU-2017:0742-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1029035 CVE References: CVE-2017-6820 Sources used: openSUSE Leap 42.2 (src): roundcubemail-1.1.8-18.1 openSUSE Leap 42.1 (src): roundcubemail-1.1.8-18.1