These are all security issues fixed in the roundcubemail-1.6.4-1.1 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "roundcubemail": "1.6.4-1.1" } ] }