11 May 2005

H-Sphere versions:   All

This security update fixes scripting vulnerability in Horde and its plugins and updates sqwebmail to 5.0.1.

• IMP webmail client update with vulnarability fixes:
  • horde-2.2.8
  • imp-3.2.8
  • kronolith-1.1.4
  • mnemo-1.1.4
  • nag-1.1.3
  • turba-1.2.5
• sqwebmail webmail client and related authentication library update:
  • sqwebmail-5.0.1
  • courier-authlib-0.55

The update procedure that is performed on CP server updates all mail servers automatically.

1. Log into your control panel server as root:
   su -
2. Download the upgrade package from our site:
   Linux:
   wget http://www.psoft.net/shiv/HS/u-webmails-1.9.tar.gz
   FreeBSD:
   fetch http://www.psoft.net/shiv/HS/u-webmails-1.9.tar.gz
3. Unpack the archive:
   tar -xzf u-webmails-1.9.tar.gz
4. Enter the unpacked directory:
   cd u-webmails-1.9
5. Run the update:
   ./update.sh