Hello Thijs
On 2006-03-07 Thijs Kinkhorst wrote:
> I've been working on it but did not yet round it off unfortunately. I
> expect that within a day or two. However, previous experiences with the
> security team indicates that it takes them many weeks to process such a
> thing so that hurrying in t
On Fri, February 24, 2006 11:21, Christian Hammers wrote:
> Upstream version 1.4.6 is available now...
I am aware of that. I've backported the fixes to sarge and woody, and I'll
work on packaging 1.4.6 for unstable on Monday.
Thijs
Upstream version 1.4.6 is available now...
bye,
-christian-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Thu, 2006-02-23 at 11:43 +1100, Geoff Crompton wrote:
> Package: squirrelmail
> Version: 2:1.4.4-7
> Severity: important
>
> The changelog at http://www.squirrelmail.org/changelog.php says for 1.4.6:
> - Security: MagicHTML fix for comments in styles which allowed
> for cross site scripti
Package: squirrelmail
Version: 2:1.4.4-7
Severity: important
The changelog at http://www.squirrelmail.org/changelog.php says for 1.4.6:
- Security: MagicHTML fix for comments in styles which allowed
for cross site scripting when using Internet Explorer (reported
by Scott Hughes) [CVE-200
5 matches
Mail list logo
