[dev] CAN-2005-0961 affecting horde2 as well?
Jan Schneider
jan at horde.org
Tue Apr 26 03:40:34 PDT 2005
Zitat von Jan Schneider <jan at horde.org>:
> Zitat von Ola Lundqvist <opal at debian.org>:
>
>> Hello
>>
>> On Tue, Apr 05, 2005 at 04:20:47PM +0200, Jan Schneider wrote:
>>> Zitat von Chuck Hagenbuch <chuck at horde.org>:
>>>
>>> > Quoting Ola Lundqvist <opal at debian.org>:
>>> >
>>> >> I have got a question on if horde2 is affected by CAN-2005-0961 as
>>> >> well as 3.0.3 and below.
>>> >
>>> > Can you send a pointer to that issue, since googling for it turns
>>> up nothing?
>>>
>>> http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0961
>>
>> I never got any reply for this. Anyone knowing anything about this?
>
> Sorry, I forgot to get back to you. The RELENG versions are affected
> and have all been patched in CVS already. We didn't find the time to
> release new versions yet though.
In case you didn't notice (our announce mailing list was dropping
mails, but that's fixed now), I cut new releases of all old application
versions that fixed this XSS.
Jan.
--
Do you need professional PHP or Horde consulting?
http://horde.org/consulting/
More information about the dev
mailing list