[announce] [SECURITY] Gollem H5 (3.0.13) (final)

Jan Schneider jan at horde.org
Mon Apr 20 18:45:34 UTC 2020


The Horde Team is pleased to announce the final release of the Gollem File
Manager version H5 (3.0.13).

Gollem is a web-based file manager, providing the ability to fully manage a
hierarchical file system stored in a variety of backends such as a SQL
database, as part of a real filesystem, or on FTP, Samba or SSH servers. For
more information on Gollem, visit http://www.horde.org/apps/gollem.

For upgrading instructions, please see
http://www.horde.org/apps/gollem/docs/UPGRADING

For detailed installation and configuration instructions, please see
http://www.horde.org/apps/gollem/docs/INSTALL

Thanks to polict of Shielder for reporting the XSS vulnerabiltiy.

The major changes compared to Gollem version H5 (3.0.11) are:
     * Fixed XSS vulnerability in breadcrumb output (CVE-2020-8034).

The full list of changes can be viewed here:

https://github.com/horde/gollem/blob/95b2a4212d734f1b27aaa7a221d2fa1370d2631f/docs/CHANGES

Have fun!

The Horde Team.


More information about the announce mailing list