Ubuntu Security Notice 6654-1 - It was discovered that Roundcube Webmail incorrectly sanitized characters in the linkrefs text messages. An attacker could possibly use this issue to execute a cross-site scripting attack.
460026cc73cc6675127f73b71d11e0359570d321c9e013f075f7ee551cfcf679