CVE-2009-0413
Publication date 3 February 2009
Last updated 24 July 2024
Ubuntu priority
Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote attackers to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.
Status
Package | Ubuntu Release | Status |
---|---|---|
roundcube | 11.10 oneiric |
Not affected
|
11.04 natty |
Not affected
|
|
10.10 maverick |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
9.10 karmic |
Not affected
|
|
9.04 jaunty |
Not affected
|
|
8.10 intrepid | Ignored end of life, was needed | |
8.04 LTS hardy | Ignored end of life | |
7.10 gutsy | Ignored end of life, was needs-triage | |
6.06 LTS dapper | Not in release | |
roundcube-webmail | 11.10 oneiric | Not in release |
11.04 natty | Not in release | |
10.10 maverick | Not in release | |
10.04 LTS lucid | Not in release | |
9.10 karmic | Not in release | |
9.04 jaunty | Not in release | |
8.10 intrepid | Not in release | |
8.04 LTS hardy | Ignored end of life | |
7.10 gutsy | Ignored end of life, was needs-triage | |
6.06 LTS dapper | Ignored end of life |
Patch details
Package | Patch details |
---|---|
roundcube |
|
roundcube-webmail |
|