ERRATA: [ GLSA 200405-16 ] Multiple XSS Vulnerabilities in SquirrelMail

From: Kurt Lieber (klieber_at_gentoo.org)
Date: 05/25/04

Next message: Conectiva Updates: "[CLA-2004:842] Conectiva Security Announcement - mailman"

Previous message: Conectiva Updates: "[CLA-2004:841] Conectiva Security Announcement - libneon"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 25 May 2004 14:12:55 -0400
To: gentoo-announce@lists.gentoo.org

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200405-16:02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: Multiple XSS Vulnerabilities in SquirrelMail
      Date: May 25, 2004
      Bugs: #49675
        ID: 200405-16:02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Errata
======
The original version of this Security Advisory listed the vulnerable
versions incorrectly. Whereas the original GLSA listed vulnerable versions
as "<= 1.4.2" it should have in fact been listed as "< 1.4.3_rc1". The
corrected "Affected Packages" section appears below.

Affected packages
=================

    -------------------------------------------------------------------
     Package / Vulnerable / Unaffected
    -------------------------------------------------------------------
  1 net-mail/squirrelmail < 1.4.3_rc1 >= 1.4.3_rc1

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200405-16.xml

License
=======

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/1.0

application/pgp-signature attachment: stored

Next message: Conectiva Updates: "[CLA-2004:842] Conectiva Security Announcement - mailman"

Previous message: Conectiva Updates: "[CLA-2004:841] Conectiva Security Announcement - libneon"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

[Full-Disclosure] ERRATA: [ GLSA 200405-16 ] Multiple XSS Vulnerabilities in SquirrelMail
... Errata ... corrected "Affected Packages" section appears below. ... the Gentoo Security Website: ... Creative Commons - Attribution / Share Alike license. ...
(Full-Disclosure)
ERRATA: [ GLSA 200405-16 ] Multiple XSS Vulnerabilities in SquirrelMail
... Errata ... corrected "Affected Packages" section appears below. ... the Gentoo Security Website: ... Creative Commons - Attribution / Share Alike license. ...
(Full-Disclosure)
[Full-Disclosure] UPDATE: [ GLSA 200410-30 ] GPdf, KPDF, KOffice: Vulnerabilities in included xpdf
... affected packages on all of their supported architectures. ... Security is a primary focus of Gentoo Linux and ensuring the ... Creative Commons - Attribution / Share Alike license. ...
(Full-Disclosure)
UPDATE: [ GLSA 200410-30 ] GPdf, KPDF, KOffice: Vulnerabilities in included xpdf
... affected packages on all of their supported architectures. ... Security is a primary focus of Gentoo Linux and ensuring the ... Creative Commons - Attribution / Share Alike license. ...
(Bugtraq)
[Full-Disclosure] UPDATE: [ GLSA 200410-20 ] Xpdf, CUPS: Multiple integer overflows
... affected packages on all of their supported architectures. ... Security is a primary focus of Gentoo Linux and ensuring the ... Creative Commons - Attribution / Share Alike license. ...
(Full-Disclosure)