kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/mail/sympa
History
bouyer c6ff149b09 Update sympa to 5.4.4. Bug fixes (including SQL injestion and privilege 
escalation vulnerabilities) and updated translations:
    * Sympa was not fully compliant to the RFC 2616, leading for example
      to possible unwanted list deletion by administrators using prefetching
      tools. This was fixed by replacing all the threatening GET requests
      by POST requests;
    * Use of sprint() function for creating SQL queries lead to possible
      SQL injection through cookie manipulation;
    * The use of files in /tmp lead to vulnerabilities.
2008-12-20 19:02:12 +00:00
..
files Update sympa to 5.2.4. Should fix pkg/36007 as a side effect. 2007-03-28 20:51:09 +00:00
patches Upgrade to sympa version 5.4.2. Changes since version 5.2.4: 2008-04-27 17:06:40 +00:00
DESCR
distinfo Update sympa to 5.4.4. Bug fixes (including SQL injestion and privilege 2008-12-20 19:02:12 +00:00
Makefile Update sympa to 5.4.4. Bug fixes (including SQL injestion and privilege 2008-12-20 19:02:12 +00:00
MESSAGE Upgrade to sympa version 5.4.2. Changes since version 5.2.4: 2008-04-27 17:06:40 +00:00
PLIST Update sympa to 5.4.4. Bug fixes (including SQL injestion and privilege 2008-12-20 19:02:12 +00:00