Is Joomla Latest Version Resolved this issue?



Is following issue resolved in Latest Joomla Version?

We are getting in touch to let you know about a remote code execution vulnerability in the PHPMailer class versions prior to 5.2.21 (releases prior to 9 Jan 2017)


I also got message from Envato.

But confuse PHP Mailer included with Joomla as library how we manually update if Joomla not update it.

If user update Joomla then it will be lost.

Joomla latest stable version is 3.6.5 that Released on Dec 13, 2016.

So If anyone has solution please share.