ELSA-2009-0010

ULN >
Oracle Linux Errata repository >
ELSA-2009-0010

ELSA-2009-0010 - squirrelmail security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2009-01-12

Description

[1.4.8-5.0.1.el5_2.2]
- Remove Redhat splash screen images

[1.4.8-5.2]
- Resolves: CVE-2008-2379
- fix XSS issue caused by an insufficient html mail sanitation

[1.4.8-5.1]
- don't transmit cookies under non-SSL connections if the session
is started under an SSL (https) connection
- Resolves: CVE-2008-3663, #468398
- fix release number with respect to Z-stream nvr policy

Related CVEs

CVE-2008-2379

CVE-2008-3663

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 3 (i386)	squirrelmail-1.4.8-8.0.1.el3.src.rpm	b74b4de01f2991c2d13237bbd33561586fe21e72c8b6d1f1e5eb5123718d2ee7	ELSA-2009-1490	el3_i386_latest
	squirrelmail-1.4.8-8.0.1.el3.src.rpm	b74b4de01f2991c2d13237bbd33561586fe21e72c8b6d1f1e5eb5123718d2ee7	ELSA-2009-1490	el3_u9_i386_patch
	squirrelmail-1.4.8-8.0.1.el3.noarch.rpm	8b431e85c56706372bdd8ef9527d57710129e4c49cfbf6342478292e6e1315bd	ELSA-2009-1490	el3_i386_latest
	squirrelmail-1.4.8-8.0.1.el3.noarch.rpm	8b431e85c56706372bdd8ef9527d57710129e4c49cfbf6342478292e6e1315bd	ELSA-2009-1490	el3_u9_i386_patch

Oracle Linux 3 (x86_64)	squirrelmail-1.4.8-8.0.1.el3.src.rpm	b74b4de01f2991c2d13237bbd33561586fe21e72c8b6d1f1e5eb5123718d2ee7	ELSA-2009-1490	el3_u9_x86_64_patch
	squirrelmail-1.4.8-8.0.1.el3.src.rpm	b74b4de01f2991c2d13237bbd33561586fe21e72c8b6d1f1e5eb5123718d2ee7	ELSA-2009-1490	el3_x86_64_latest
	squirrelmail-1.4.8-8.0.1.el3.noarch.rpm	8b431e85c56706372bdd8ef9527d57710129e4c49cfbf6342478292e6e1315bd	ELSA-2009-1490	el3_u9_x86_64_patch
	squirrelmail-1.4.8-8.0.1.el3.noarch.rpm	8b431e85c56706372bdd8ef9527d57710129e4c49cfbf6342478292e6e1315bd	ELSA-2009-1490	el3_x86_64_latest

Oracle Linux 4 (i386)	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_i386_latest
	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_u7_i386_patch
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_i386_latest
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_u7_i386_patch

Oracle Linux 4 (ia64)	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_ia64_latest
	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_u7_ia64_patch
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_ia64_latest
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_u7_ia64_patch

Oracle Linux 4 (x86_64)	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_u7_x86_64_patch
	squirrelmail-1.4.8-5.0.1.el4_7.2.src.rpm	e48862decd580cf89dff121fe4b4c2512ef30bc2124bb512a97f82c6422b6564	ELSA-2012-0103	el4_x86_64_latest
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_u7_x86_64_patch
	squirrelmail-1.4.8-5.0.1.el4_7.2.noarch.rpm	fe4b861bf9ce5ffb800a4a6cdf981b90d8c7c36d29960f2d6cc8eddb6debdc09	ELSA-2012-0103	el4_x86_64_latest

Oracle Linux 5 (i386)	squirrelmail-1.4.8-5.0.1.el5_2.2.src.rpm	a91d9698a5d06a1402a58dfde841bb66354087498d22e17ac7f850848e4d53d5	ELSA-2013-0126	el5_u2_i386_patch
	squirrelmail-1.4.8-5.0.1.el5_2.2.noarch.rpm	71b1d764af5c2db5a22fec57811c01214bbcd68e44c423ee00c92c3805f95c58	ELSA-2013-0126	el5_u2_i386_patch

Oracle Linux 5 (x86_64)	squirrelmail-1.4.8-5.0.1.el5_2.2.src.rpm	a91d9698a5d06a1402a58dfde841bb66354087498d22e17ac7f850848e4d53d5	ELSA-2013-0126	el5_u2_x86_64_patch
	squirrelmail-1.4.8-5.0.1.el5_2.2.noarch.rpm	71b1d764af5c2db5a22fec57811c01214bbcd68e44c423ee00c92c3805f95c58	ELSA-2013-0126	el5_u2_x86_64_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691