Public bug reported:

Binary package hint: squirrelmail

SM prior to 1.4.9a is vulnerable to some XSS issues:

http://squirrelmail.org/security/

** Affects: squirrelmail (Ubuntu)
     Importance: Undecided
         Status: Fix Released
** Affects: squirrelmail (Ubuntu Breezy)
     Importance: Undecided
         Status: Unconfirmed
** Affects: squirrelmail (Ubuntu Dapper)
     Importance: Undecided
         Status: Unconfirmed
** Affects: squirrelmail (Ubuntu Edgy)
     Importance: Undecided
         Status: Unconfirmed
** Affects: squirrelmail (Ubuntu Feisty)
     Importance: Undecided
         Status: Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2006-6142

** This bug has been flagged as a security issue

** Changed in: squirrelmail (Ubuntu Feisty)
       Status: Unconfirmed => Fix Released

-- 
CVE-2006-6142 Cross site scripting in compose, draft & HTML mail viewing
https://launchpad.net/bugs/78144

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to