Fedora Core 3 : squirrelmail-1.4.6-0.cvs20050812.1.fc3 (2005-779)

high Nessus Plugin ID 19482

Synopsis

The remote Fedora Core host is missing a security update.

Description

It probably is not a good idea to push a CVS snapshot here, but upstream screwed up their 1.4.5 release and CVS contains further fixes like PHP5 related stuff that might make squirrelmail usable on FC4.
This snapshot worked on my personal server for the past week, so hopefully it will be good for everyone else too.

CVE-2005-1769 and CVE-2005-2095 security issues are solved in this update.

Please report regressions in behavior from our previous 1.4.4 package to Red Hat Bugzilla, product Fedora Core. All other squirrelmail bugs please report upstream.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected squirrelmail package.

See Also

http://www.nessus.org/u?827eeed5

Plugin Details

Severity: High

ID: 19482

File Name: fedora_2005-779.nasl

Version: 1.15

Type: local

Agent: unix

Published: 8/23/2005

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:squirrelmail, cpe:/o:fedoraproject:fedora_core:3

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 8/22/2005

Reference Information

FEDORA: 2005-779