[announce] Horde 3.3.1 (final)

Chuck Hagenbuch chuck at horde.org
Wed Dec 10 16:39:03 UTC 2008


The Horde Team is pleased to announce the final release of the Horde
Application Framework version 3.3.1.

This is a minor security release that adds another check to the XSS filter for
an Internet Explorer exploit. All users are encouraged to upgrade to this
version.

The Horde Application Framework is a modular, general-purpose web application
framework written in PHP.  It provides an extensive array of classes that are
targeted at the common problems and tasks involved in developing modern web
applications.

The major changes compared to the Horde version H3 (3.3) are:
     * Added another check to the XSS filter (only IE is vulnerable).
     * An import script for SquirrelMail preferences.
     * Consistent access keys.
     * Fix sharing with LDAP groups.
     * Several SyncML fixes.
     * Upgrade prototype.js to v1.6.0.3.

The full list of changes (from version 3.3) can be viewed here:

http://cvs.horde.org/diff.php/horde/docs/CHANGES?r1=1.515.2.474&r2=1.515.2.490&ty=h

The Horde 3.3.1 distribution is available from the following locations:

     ftp://ftp.horde.org/pub/horde/horde-3.3.1.tar.gz
     http://ftp.horde.org/pub/horde/horde-3.3.1.tar.gz

Patches against version 3.3 are available at:

     ftp://ftp.horde.org/pub/horde/patches/patch-horde-3.3-3.3.1.gz
     http://ftp.horde.org/pub/horde/patches/patch-horde-3.3-3.3.1.gz

NOTE: Patches do not contain differences between files containing binary data.
These files will need to be updated via the distribution files.

Or, for quicker access, download from your nearest mirror:

     http://www.horde.org/mirrors.php

MD5 sums for the packages are as follows:

     887690c793a87168899b423d991ca230  horde-3.3.1.tar.gz
     7e17340055544c850e20efeb830e5047  patch-horde-3.3-3.3.1.gz

Have fun!

The Horde Team.


More information about the announce mailing list