UbuntuUpdates.org

Package squirrelmail

Name:	squirrelmail
Description:	Webmail for nuts SquirrelMail is a standards-based webmail package written in PHP. It includes built-in pure PHP support for the IMAP and SMTP protocols, and is designed for maximum compatibility across browsers. SquirrelMail has few requirements and is easy to configure and install. It runs on top of any IMAP server. SquirrelMail has all the functionality you would want from an email client, including strong MIME support, address books and folder manipulation.
Latest version:	2:1.4.19-1ubuntu0.1
Ubuntu release:	karmic
Level:	security
Repository:	universe

See all versions of this package in all Ubuntu releases and repositories.

Change Log

Version: 2:1.4.19-1ubuntu0.1	2010-02-08 22:02:03 UTC
squirrelmail (2:1.4.19-1ubuntu0.1) karmic-security; urgency=low * SECURITY UPDATE: (LP: #446838) * Multiple cross-site request forgery (CSRF) in all forms submissions * edited: src/addrbook_search_html.php,src/addressbook.php,src/compose.php src/folders_create.php,src/folders_delete.php,src/folders.php, src/folders_rename_do.php,src/folders_rename_getname.php, src/folders_subscribe.php,functions/forms.php, functions/mailbox_display.php,src/move_messages.php, src/options_highlight.php,src/options_identities.php, src/options_order.php,src/options.php,src/search.php, functions/strings.php,src/vcard.php * Fixes : CVE-2009-2964 - http://www.squirrelmail.org/security/issue/2009-08-12 - patches taken from upstream rev 13818 - patches applied inline -- Leonel Nunez Sun, 11 Oct 2009 19:18:52 -0600
446838 squirrelmail: "Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.19 and earlier" CVE-2009-2964 Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.19 and earlier, and NaSMail before 1.7, allow remote attackers to hijac

---

News

  News
  Comments

New kernel 2.6.24-27 for Hardy
Google Chrome in Ubuntu: 2 repositories, 3 versions
Firefox 3.5.8 changelog
KDE 4.4 PPA for Karmic: all the details
2.6.31-20 kernel in proposed
2.6.31-19 changelog
Security vulnerability fixes on all kernels
Chrome 5.0 spotted in Chromium Daily Builds
Track package versions in PPAs
Install Firefox 3.6 in Karmic
PHP5 security updates across all Ubuntu releases
2.6.31-18 for Karmic now available
2.6.31-17 in karmic proposed
New kernel 2.6.31-15 for Karmic is out
How to speed up ubuntu downloads
Linux kernel updates across the board on Wednesday
MythTV 0.22 branched yesterday
UbuntuOne version 1.0.0 released
Introducing ubuntuupdates.org

See all

Latest updates

  Package Updates
  Bugs & CVEs

security

moin (intrepid)
moin (hardy)
moin (karmic)
moin (jaunty)
dpkg (intrepid)
dpkg (hardy)
dpkg (karmic)
dpkg (jaunty)
apache2-mpm-itk (intrepid)
apache2-mpm-itk (hardy)
apache2-mpm-itk (jaunty)
apache2 (intrepid)

updates

dpkg (intrepid)
tzdata (hardy)
tzdata (hardy)
dpkg (hardy)
dpkg (karmic)
dpkg (jaunty)
tzdata (intrepid)
tzdata (karmic)
tzdata (jaunty)
apache2-mpm-itk (intrepid)
apache2 (intrepid)
apache2-mpm-itk (hardy)
apache2 (hardy)
apache2 (karmic)
apache2 (karmic)
apache2 (jaunty)
apache2-mpm-itk (jaunty)
apache2 (jaunty)

See all

PPA updates

  PPA Updates

testdrive
myththemes
mythtv
xulrunner-1.9.2
firefox-3.5
mozilla-devscripts
chromium-browser
gyp
chromium-codecs-ffmpeg
kdebase-runtime
gnome-shell
xulrunner-1.9.1
docky
mythplugins

See all