pkgsrc-changes: CVS commit: pkgsrc/mail/squirrelmail

Subject: CVS commit: pkgsrc/mail/squirrelmail
To: None <pkgsrc-changes@NetBSD.org>
From: Martti Kuparinen <martti@netbsd.org>
List: pkgsrc-changes
Date: 11/16/2004 14:18:01

Module Name:	pkgsrc
Committed By:	martti
Date:		Tue Nov 16 14:18:01 UTC 2004

Modified Files:
	pkgsrc/mail/squirrelmail: Makefile distinfo
	pkgsrc/mail/squirrelmail/patches: patch-aa
Added Files:
	pkgsrc/mail/squirrelmail/patches: patch-ab

Log Message:
Updated squirrelmail to 1.4.3anb1 (pkg/28328 by IYODA Atsushi)

There is a cross site scripting issue in the decoding of encoded text
in certain headers. SquirrelMail correctly decodes the specially
crafted header, but doesn't sanitize the decoded strings.

http://article.gmane.org/gmane.mail.squirrelmail.user/21169


To generate a diff of this commit:
cvs rdiff -r1.42 -r1.43 pkgsrc/mail/squirrelmail/Makefile
cvs rdiff -r1.20 -r1.21 pkgsrc/mail/squirrelmail/distinfo
cvs rdiff -r1.7 -r1.8 pkgsrc/mail/squirrelmail/patches/patch-aa
cvs rdiff -r0 -r1.6 pkgsrc/mail/squirrelmail/patches/patch-ab

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.