Fedora Core 5: 2006-680 Moderate: SquirrelMail File Inclusion Issue

SquirrelMail is a standards-based webmail package written in PHP4. It

includes built-in pure PHP support for the IMAP and SMTP protocols, and

all pages render in pure HTML 4.0 (with no Javascript) for maximum

compatibility across browsers. It has very few requirements and is very

easy to configure and install. SquirrelMail has all the functionality

you would want from an email client, including strong MIME support,

address books, and folder manipulation.

CVE-2006-2842 Squirrelmail File Inclusion Vulnerability

- CVE-2006-2842 File Inclusion Vulnerability

* Mon Jun 5 2006 Warren Togami 1.4.6-6

- buildreq gettext (194169)

9b33ed059ae0786448d8595b7789f0d0c8d02bf9 SRPMS/squirrelmail-1.4.6-7.fc5.src.rpm

9b33ed059ae0786448d8595b7789f0d0c8d02bf9 noarch/squirrelmail-1.4.6-7.fc5.src.rpm

e444c8eae171aa7f6d7bddf0022ad211217e9763 ppc/squirrelmail-1.4.6-7.fc5.noarch.rpm

e444c8eae171aa7f6d7bddf0022ad211217e9763 x86_64/squirrelmail-1.4.6-7.fc5.noarch.rpm

e444c8eae171aa7f6d7bddf0022ad211217e9763 i386/squirrelmail-1.4.6-7.fc5.noarch.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/