View Single Post
  #1  
Old 18th December 2008, 09:15
Hans Hans is offline
Moderator
 
Join Date: Dec 2005
Location: Montfoort, The Netherlands
Posts: 2,256
Thanks: 210
Thanked 648 Times in 294 Posts
Send a message via Skype™ to Hans
Exclamation security patch for RoundCube 0.2 Beta for ISPCOnfig 2

On 16-12-2008 a security patch for RoundCube 0.2 Beta came available.
There were two security issues reported for RoundCube 0.2 Beta, which are now fixed. The first was as possible code injection using the html2text conversion script. The other exploit used the unchecked size parameters of the quota image to let PHP create huge images eating up all the server memory.

If you make use of the ROundCube 0.2 Beta package for ISPConfig 2, it is strongly recommended to install this patch file.


The patch file and readme file can be downloaded here.
__________________
Hans

BB-Hosting | Quality Web Hosting since 2005
Reply With Quote
Sponsored Links