[ubuntu/xenial-updates] squirrelmail 2:1.4.23~svn20120406-2+deb8u2build0.16.04.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Apr 10 13:58:09 UTC 2018
squirrelmail (2:1.4.23~svn20120406-2+deb8u2build0.16.04.1) xenial-security; urgency=medium
* fake sync from Debian
squirrelmail (2:1.4.23~svn20120406-2+deb8u2) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Path traversal vulnerability (CVE-2018-8741)
Directory traversal flaw in Deliver.class.php can allow a remote
attacker to retrieve or delete arbitrary files. (Closes: #893202)
Date: 2018-04-10 12:28:13.599725+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Jeroen van Wolffelaar <jeroen at wolffelaar.nl>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/squirrelmail/2:1.4.23~svn20120406-2+deb8u2build0.16.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list