[Bug 1228901] VUL-0: CVE-2024-42010: mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a insufficiently filters Cascading Style Sheets (CSS) token sequences in rendered e-mail messages, allowing a remote attacker to obtain sensitive information.

6 Aug 2024

      https://bugzilla.suse.com/show_bug.cgi?id=1228901

SMASH SMASH <smash_bz@suse.de> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Priority|P5 - None                   |P3 - Medium
-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 1228901] VUL-0: CVE-2024-42010: mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a insufficiently filters Cascading Style Sheets (CSS) token sequences in rendered e-mail messages, allowing a remote attacker to obtain sensitive information.

bugzilla_noreply＠suse.com