squirrelmail (2:1.4.10a-2ubuntu0.1) gutsy-security; urgency=low
* SECURITY UPDATE: cross site scripting issue in the HTML filter. Patch taken from upstream release. (LP: #306536) - CVE-2008-2379 - http://www.squirrelmail.org/security/issue/2008-12-04 * SECURITY UPDATE: Cookies sent over HTTPS will now be confined to HTTPS only (cookie secure flag) and more support for the HTTPOnly cookie attribute. Patch taken from upstream release. (LP: #328938) - CVE-2008-3663 - http://www.squirrelmail.org/security/issue/2008-09-28
squirrelmail (2:1.4. 10a-2ubuntu0. 1) gutsy-security; urgency=low
* SECURITY UPDATE: cross site scripting issue in the HTML filter. www.squirrelmai l.org/security/ issue/2008- 12-04 www.squirrelmai l.org/security/ issue/2008- 09-28
Patch taken from upstream release. (LP: #306536)
- CVE-2008-2379
- http://
* SECURITY UPDATE: Cookies sent over HTTPS will now be confined to
HTTPS only (cookie secure flag) and more support for the HTTPOnly
cookie attribute. Patch taken from upstream release. (LP: #328938)
- CVE-2008-3663
- http://