Bug 1171039 (CVE-2020-12626)

Summary: VUL-0: CVE-2020-12626: roundcubemail: CSRF attack may lead to logging out an authenticated user
Product: [openSUSE] openSUSE Distribution Reporter: Alexandros Toptsoglou <atoptsoglou>
Component: SecurityAssignee: Aeneas Jai├čle <aj>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium CC: lars.vogdt
Version: Leap 15.1   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/258957/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Comment 1 Lars Vogdt 2020-08-13 15:39:23 UTC
server:php:applications -> roundcubemail updated to 1.4.8
openSUSE:Factory package submitted.