oss-sec mailing list archives

Re: CVE-Request: courier-authlib sql injection

From: Robert Buchholz <rbu () gentoo org>
Date: Mon, 9 Jun 2008 00:20:49 +0200

On Sunday 08 June 2008, Hanno Böck wrote:

courier-authlib before 0.60.6 suffers from an sql injection.

The sourceforge webarchive is somehow broken and the gmame one isn't
up-to-date, so I can't post the announcement...


Christian Hoffmann pointed out this link on our bug:
http://marc.info/?l=courier-users&m=121294465330832

Robert

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

CVE-Request: courier-authlib sql injection Hanno Böck (Jun 08)
- Re: CVE-Request: courier-authlib sql injection Robert Buchholz (Jun 08)
- Re: CVE-Request: courier-authlib sql injection Steven M. Christey (Jun 10)