There is a vulnerability in Squirrel mail, don't know why Fedora would
be updated but not RHEL...
http://www.sans.org/resources/malwarefaq/squirrelmail.php
P.
Tony Wicks wrote:
> On a side note the upstream updated Squirrelmail in Fedora but not
> RHEL after the recent security issues, anyone know why ? (Even Debian
> updated it)
>> Dear All,
>>
>> I noticed that sendmail rpms were updated by yum a day or so ago,
>> however, how can I check if the versions installed are patched for
>> the recently exposed exploit....
>>
>> I guess that since I am running sendmail-8.13.1-3 (which appears to
>> be the latest according to yum) and the articles describe 8.13.6 as
>> having the fix that I may be vulnerable....
>>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos
>
