Hello,
Update: A new vulnerability has been discovered in squirrelmail. We'll
release one advisory for this one and the new one (to be announced soon).
Thijs
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
We're working on this. An updated package for sarge / etch / sid has
been prepared and will be tested.
Backporting to woody is not trivial (the code is more than 4 years old),
but we'll do a best effort.
The patches have been applied or backported for both
stable/testing/unstable (same
Package: squirrelmail
Version: 1.4.4-5
Tags: security fixed-upstream patch
Several cross site scripting (XSS) vulnerabilties have been discovered
in SquirrelMail versions 1.4.0 - 1.4.4. These have been addressed in a
patch that can be found at [1]. We advise all our users to apply this
patch.
3 matches
Mail list logo