Ubuntu
squirrelmail package

lp:ubuntu/natty/squirrelmail

Natty (11.04)
natty

Created by James Westby on 2010-10-13 and last modified on 2010-10-13

Get this branch:: bzr branch lp:ubuntu/natty/squirrelmail

Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Status:: Mature

Recent revisions

19. By Thijs Kinkhorst on 2010-07-31: * New upstream release.
+ Addresses two low-imact security issues, bump urgency.
[CVE-2010-1637, CVE-2010-2813]
* Checked for policy 3.9.1, no changes necessary.
18. By Andreas Wenning on 2010-06-24: * SECURITY UPDATE: (LP: #598077)
* The Mail Fetch plugin allows remote authenticated users to bypass firewall
  restrictions and use SquirrelMail as a proxy to scan internal networks via
  a modified POP3 port number.
  - http://squirrelmail.org/security/issue/2010-06-21
  - CVE-2010-1637
  - Patch taken from upstream svn rev. 13951. Applied inline.
17. By Thijs Kinkhorst on 2010-03-07: * New upstream release.
+ Addresses search bug (closes: #550763).
* Update to policy 3.8.4, no changes necessary.
16. By Thijs Kinkhorst on 2009-09-27: * New upstream release candidate.
+ Addresses cross site request forgery (CVE-2009-2964,
closes: #543818).
* Update to policy 3.8.3, no changes necessary.
15. By Thijs Kinkhorst on 2009-05-21: * New upstream release.
+ Corrects incomplete fix for CVE-2009-1579 [CVE-2009-1381]
+ Fixes filter plugin regression (closes: #529328)
14. By Thijs Kinkhorst on 2009-05-13: * New upstream release.
  + Addresses several security issues (closes: #528528):
    CVE-2009-1578, CVE-2009-1579, CVE-2009-1580, CVE-2009-1581.
* Update to debhelper 7 and policy 3.8.1.
* Make squirrelmail.cron.daily cope with the administrator
  enabling the hashed dir feature, thanks Marcello Nuccio
  (closes: #508287).
* Update Recommends and Suggests:
  + Remove all php4-related relations.
  + Add recommends for php5-mcode which speeds up crypto.
  + Suggest php5-recode for some character sets.
  + Recommend plugins: squirrelmail-viewashtml for HTML mail,
    squirrelmail-logger to provide logging.
  (closes: #523966, #527964)
13. By Thijs Kinkhorst on 2008-12-07: Address cross site scripting issue in the HTML filter
(CVE-2008-2379).
12. By Thijs Kinkhorst on 2008-09-28: Cookies sent over HTTPS will now be confined to HTTPS only
(cookie secure flag) and more support for the HTTPOnly cookie
attribute. Patch taken from upstream release.
(CVE-2008-3663, closes: #499942)
11. By Thijs Kinkhorst on 2006-12-04: * New upstream security release.
- Additionally tightens HTML filter for IE <= 5 parsing
absolutely everything and it's horse.
10. By Thijs Kinkhorst on 2006-11-13: * Add note to README.Debian about server side sorting (Closes: #394286)
and regular_globals not being supported.
* Add IfModule conditionals for register_globals setting in
apache.conf (Closes: #398173).

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/oneiric/squirrelmail

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntusquirrelmail package