Ubuntu
squirrelmail package

Ubuntu 10.04 and squirrelmail security updates

Asked by Finn Thain on 2011-08-29

Hi,

Debian recently issued DSA-2291 along with squirrelmail updates (squeeze updated from 2:1.4.21-1 to 2:1.4.21-2).

Ubuntu 10.04 LTS has 2:1.4.20-1ubuntu0.1. It would appear from the upstream vulnerability information that the vulnerabilities fixed by debian are present in upstream releases prior to 1.4.22, which probably means that Ubuntu's package is also vulnerable.

Does ubuntu plan to update this package for 10.04 LTS?

Regards,
Finn Thain

Question information

Language:: English Edit question

Status:: Answered

For:: Ubuntu squirrelmail Edit question

Assignee:: No assignee Edit question

Last query:: 2011-08-29

Last reply:: 2011-08-29

Link existing bug

Revision history for this message

actionparsnip (andrew-woodhead666) said on 2011-08-29:

I'd log a bug stating it is a security issue and it will be reviewed promptly and may get included in the default repos. You may find a PPA has the newer version:
https://launchpad.net/ubuntu/+ppas

Can you help with this problem?

Provide an answer of your own, or ask Finn Thain for more information if necessary.

To post a message you must log in.

Ask a question

Edit question

Ubuntusquirrelmail package

Ubuntu 10.04 and squirrelmail security updates

Question information

Related bugs

Related FAQ:

Can you help with this problem?

Subscribers

Ubuntu
squirrelmail package