StackPatch is live — CVE patch ops for indie SaaS, $99 lifetime founder seat (50 only).See product

Back to CVE digest

Package · roundcube-plugins

`roundcube-plugins` CVE matrix across Linux distros

35 CVEs tracked across 5 distro releases. Showing the 35 most-recent fix records.

Ecosystems with tracked fixes

Ubuntu bionicUbuntu focalUbuntu jammyUbuntu nobleUbuntu xenial

Recent fix records

Each row links to the full per-CVE cross-distro view. Sorted most-recent first.

Ubuntu bionic

Source: Ubuntu USN

CVE-2019-15237→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-38356→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-38357→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-42008→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-42010→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2026-25916→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2026-26079→ fixed in1.3.6+dfsg.1-1ubuntu0.1~esm8USN-8223-1

Single command to patch all of these:

sudo apt-get install --only-upgrade -y roundcube-plugins

Ubuntu focal

Source: Ubuntu USN

CVE-2019-15237→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-38356→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-38357→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-42008→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2024-42010→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2026-25916→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1
CVE-2026-26079→ fixed in1.4.3+dfsg.1-1ubuntu0.1~esm8USN-8223-1

Single command to patch all of these:

sudo apt-get install --only-upgrade -y roundcube-plugins

Ubuntu jammy

Source: Ubuntu USN

CVE-2019-15237→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2024-38356→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2024-38357→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2024-42008→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2024-42010→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2026-25916→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1
CVE-2026-26079→ fixed in1.5.0+dfsg.1-2ubuntu0.1~esm6USN-8223-1

Single command to patch all of these:

sudo apt-get install --only-upgrade -y roundcube-plugins

Ubuntu noble

Source: Ubuntu USN

CVE-2019-15237→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2024-38356→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2024-38357→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2024-42008→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2024-42010→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2026-25916→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1
CVE-2026-26079→ fixed in1.6.6+dfsg-2ubuntu0.1+esm3USN-8223-1

Single command to patch all of these:

sudo apt-get install --only-upgrade -y roundcube-plugins

Ubuntu xenial

Source: Ubuntu USN

CVE-2019-15237→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2024-38356→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2024-38357→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2024-42008→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2024-42010→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2026-25916→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1
CVE-2026-26079→ fixed in1.2~beta+dfsg.1-0ubuntu1+esm8USN-8223-1

Single command to patch all of these:

sudo apt-get install --only-upgrade -y roundcube-plugins

Is YOUR roundcube-plugins patched?

5-second check on your actual server. The quickscan reads your installed roundcube-plugins version and matches against the same 35-CVE catalog above.

curl https://mindsparkstack.com/scan.sh | bash

Form-based quickscan Continuous monitoring ($99 lifetime)