[wellylug] squirrelmail 1.4.11 and 1.4.12 vulnerability
Jethro Carr
jethro.carr at jethrocarr.com
Sun Dec 16 14:19:43 NZDT 2007
hi all,
if you are a user of Squirrelmail version 1.4.11 and 1.4.12, you should
upgrade immediately to the latest release.
The downloads of 1.4.11 and 1.4.12 were compromised.
http://lwn.net/Articles/262211/
If you are a RHEL/CentOS user, you have nothing to worry about as the
most recent version is 1.4.8 (in CentOS 5.1).
If you are a Fedora 8 user, it is also not a problem, as the version of
squirrelmail used was downloaded before the compromise occurred.
cheers,
--
Jethro Carr
www.jethrocarr.com
www.jethrocarr.com/index.php?cms=blog
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://lists.wellylug.org.nz/pipermail/wellylug/attachments/20071216/747fff0a/attachment.pgp
More information about the wellylug
mailing list