our university uses a security scanner to check for outdated and
The scanner recently noticed, that squirrel mail was vulnerable for
According to your Changelog, this CVE has been fixed on April, 25.
The security scanner has not been able to recognize, that you fixed the CVE,
because it can only check the Version string of squirrelmail.
Is it possible, that you increase the minor Version each time a CVE is
so security scanners will be able to detect, if a version is installed,
where the CVE is fixed?