[Bug 203461] mail/james: security/vuxml: update to 2.3.2.1 (arbitrary system command execution for servers)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Oct 1 02:15:30 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203461
Bug ID: 203461
Summary: mail/james: security/vuxml: update to 2.3.2.1
(arbitrary system command execution for servers)
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Keywords: needs-patch, security
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: junovitch at freebsd.org
CC: ports-secteam at FreeBSD.org
CC: ports-secteam at FreeBSD.org
http://www.openwall.com/lists/oss-security/2015/09/30/7
Also:
http://james.apache.org/download.cgi#Apache_James_Server
Apache James 2.3.2.1 is the stable version
This release has many enhancements and bug fixes over the previous release. See
the Release Notes for a detailed list of changes. Some of the earlier defects
could turn a James mail server into an Open Relay and allow files to be written
on disk. All users of James Server are urged to upgrade to version v2.3.2.1 as
soon as possible.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list