Fedora Core 4 Update: squirrelmail-1.4.6-7.fc4 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

Is Mandatory Access Control Too Much Security For Enterprise's Linux?

	Yes, too difficult to configure and manage.
	No. You can never have enough security.
	Yes. Standard Linux security settings work for us.
	No. Industry demands will demand SELinux.
	Don't know.

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

Emily Ratliff: OS Security

DanWalsh LiveJournal

Security Bloggers Network

Latest Newsletters

Linux Advisory Watch: August 29th, 2008

Linux Security Week: August 25th, 2008

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora Core 4 Update: squirrelmail-1.4.6-7.fc4

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

CVE-2006-2842 Squirrelmail File Inclusion

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2006-668
2006-06-07
---------------------------------------------------------------------

Product     : Fedora Core 4
Name        : squirrelmail
Version     : 1.4.6                      
Release     : 7.fc4                  
Summary     : SquirrelMail webmail client
Description :
SquirrelMail is a standards-based webmail package written in PHP4. It
includes built-in pure PHP support for the IMAP and SMTP protocols, and
all pages render in pure HTML 4.0 (with no Javascript) for maximum
compatibility across browsers.  It has very few requirements and is very
easy to configure and install. SquirrelMail has all the functionality
you would want from an email client, including strong MIME support,
address books, and folder manipulation.

---------------------------------------------------------------------
Update Information:

CVE-2006-2842 Squirrelmail File Inclusion
---------------------------------------------------------------------
* Wed Jun  7 2006 Warren Togami  1.4.6-7
- CVE-2006-2842 File Inclusion Vulnerability
* Mon Jun  5 2006 Warren Togami  1.4.6-6
- buildreq gettext (194169)

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

6991c73223c32d99e329ef0dfeca62a5697e9882  SRPMS/squirrelmail-1.4.6-7.fc4.src.rpm
6991c73223c32d99e329ef0dfeca62a5697e9882  noarch/squirrelmail-1.4.6-7.fc4.src.rpm
76ea21f3c5298556dffc841eb047cabfd21620d3  ppc/squirrelmail-1.4.6-7.fc4.noarch.rpm
76ea21f3c5298556dffc841eb047cabfd21620d3  x86_64/squirrelmail-1.4.6-7.fc4.noarch.rpm
76ea21f3c5298556dffc841eb047cabfd21620d3  i386/squirrelmail-1.4.6-7.fc4.noarch.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

< Prev		Next >

Partner:

Latest Features

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Open Source Tool of March: ZoneMinder

Meet the Anti-Nmap: PSAD

Open Source Tool of February: Nmap!

Yesterday's Edition

Security Configuration Guides

Firefox 3.0's SSL Certificate Interface Meets Resistance

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital