[commits] trean branch master updated. aa0c34cbab4865d2209c064bfe4b98a534da734b

Sun Mar 8 21:34:25 UTC 2020

The branch "master" has been updated.
The following is a summary of the commits.

from: 9216d86e14a904b8665d384a777d26b6bb00d423

8844968 SECURITY: Fix Directory Traversal Vulerability.
055029f Prevent directory traversal
aa0c34c [mjr] SECURITY: Fix Directory Traversal Vulnerability (Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative).

Summary: https://github.com/horde/trean/compare/9216d86e14a9...aa0c34cbab48

-----------------------------------------------------------------------

commit 8844968890ac57fd0457d902bae302c85b22d566
Author: Michael J Rubinsky <mrubinsk at horde.org>
Date:   Sun, 08 Mar 2020 17:33:11 -0400

SECURITY: Fix Directory Traversal Vulerability.

 M lib/Block/Bookmarks.php
 M lib/Block/Mostclicked.php

https://github.com/horde/trean/commit/8844968890ac57fd0457d902bae302c85b22d566

-----------------------------------------------------------------------

commit 055029f551501803d7e293a48316e2cf31307908
Author: Michael J Rubinsky <mrubinsk at horde.org>
Date:   Sun, 08 Mar 2020 17:33:44 -0400

Prevent directory traversal

 M lib/Block/Tagsearch.php

https://github.com/horde/trean/commit/055029f551501803d7e293a48316e2cf31307908

-----------------------------------------------------------------------

commit aa0c34cbab4865d2209c064bfe4b98a534da734b
Author: Michael J Rubinsky <mrubinsk at horde.org>
Date:   Sun, 08 Mar 2020 17:34:09 -0400

[mjr] SECURITY: Fix Directory Traversal Vulnerability (Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative).

 M doc/changelog.yml

https://github.com/horde/trean/commit/aa0c34cbab4865d2209c064bfe4b98a534da734b