1
Candidate: CVE-2012-4668
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4668
5
http://www.openwall.com/lists/oss-security/2012/08/20/9
6
http://www.openwall.com/lists/oss-security/2012/08/20/2
7
http://sourceforge.net/news/?group_id=139281&id=309011
9
Cross-site scripting (XSS) vulnerability in Roundcube Webmail 0.8.1 and
10
earlier allows remote attackers to inject arbitrary web script or HTML via
11
the signature in an email.
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685475
16
http://trac.roundcube.net/ticket/1488613
22
upstream: https://github.com/roundcube/roundcubemail/commit/c086978f6a91eacb339fd2976202fca9dad2ef32
23
upstream_roundcube: needed
24
hardy_roundcube: not-affected
25
lucid_roundcube: not-affected
26
natty_roundcube: ignored (reached end-of-life)
27
oneiric_roundcube: ignored (reached end-of-life)
28
precise_roundcube: ignored (reached end-of-life)
29
precise/esm_roundcube: DNE (precise was needed)
30
quantal_roundcube: ignored (reached end-of-life)
31
raring_roundcube: ignored (reached end-of-life)
32
saucy_roundcube: ignored (reached end-of-life)
33
trusty_roundcube: needed
34
utopic_roundcube: ignored (reached end-of-life)
35
vivid_roundcube: ignored (reached end-of-life)
36
vivid/stable-phone-overlay_roundcube: DNE
37
vivid/ubuntu-core_roundcube: DNE
38
wily_roundcube: ignored (reached end-of-life)
39
xenial_roundcube: needed
40
yakkety_roundcube: ignored (reached end-of-life)
41
zesty_roundcube: ignored (reached end-of-life)
42
artful_roundcube: needed
43
bionic_roundcube: needs-triage
44
devel_roundcube: needs-triage