[Bug 226831] [PATCH] mail/squirrelmail: update to patch security flaw in attachment processing
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed Mar 21 17:46:50 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=226831
Bug ID: 226831
Summary: [PATCH] mail/squirrelmail: update to patch security
flaw in attachment processing
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: jsmith at resonatingmedia.com
CC: uzsolt at uzsolt.hu
CC: uzsolt at uzsolt.hu
Flags: maintainer-feedback?(uzsolt at uzsolt.hu)
Created attachment 191714
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=191714&action=edit
Update and security fix for squirrelmail
The Squirrelmail (mail/squirrelmail) port contains a security flaw which could
allow users to access files on the server's file system. See CVE-2018-8741
discussed here: http://www.openwall.com/lists/oss-security/2018/03/17/2
The attached patch updates the Squirrelmail port to address the security hole.
Basically it just includes the new patch provided by Openwall and bumps the
port's revision number.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list