Gentoo Archives: gentoo-announce

From:	Kurt Lieber <klieber@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××.com, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] ERRATA: [ GLSA 200405-16 ] Multiple XSS Vulnerabilities in SquirrelMail
Date:	Tue, 25 May 2004 18:19:07
Message-Id:	`20040525181255.GE3228@mail.lieber.org`

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200405-16:02
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: Multiple XSS Vulnerabilities in SquirrelMail
9	Date: May 25, 2004
10	Bugs: #49675
11	ID: 200405-16:02
12
13	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15	Errata
16	======
17	The original version of this Security Advisory listed the vulnerable
18	versions incorrectly. Whereas the original GLSA listed vulnerable versions
19	as "<= 1.4.2" it should have in fact been listed as "< 1.4.3_rc1". The
20	corrected "Affected Packages" section appears below.
21
22	Affected packages
23	=================
24
25	-------------------------------------------------------------------
26	Package / Vulnerable / Unaffected
27	-------------------------------------------------------------------
28	1 net-mail/squirrelmail < 1.4.3_rc1 >= 1.4.3_rc1
29
30	Availability
31	============
32
33	This GLSA and any updates to it are available for viewing at
34	the Gentoo Security Website:
35
36	http://security.gentoo.org/glsa/glsa-200405-16.xml
37
38	License
39	=======
40
41	Copyright 2004 Gentoo Technologies, Inc; referenced text
42	belongs to its owner(s).
43
44	The contents of this document are licensed under the
45	Creative Commons - Attribution / Share Alike license.
46
47	http://creativecommons.org/licenses/by-sa/1.0

Report Message

Find on MARC Find on Google Groups