[horde] Horde 3.1.3 (final)

Jan Schneider jan at horde.org
Thu Aug 17 06:33:22 PDT 2006


The Horde Team is pleased to announce the final release of the Horde
Application Framework version 3.1.3.

This is a bugfix release that also fixes a cross site scripting vulnerability
and improves protection against phishing attempts.

Many thanks to the "immerda project group" (http://www.immmerda.ch) and Marc
Ruef for reporting these problems and working with us to test the fixes.

The Horde Application Framework is a modular, general-purpose web application
framework written in PHP.  It provides an extensive array of libraries that
are targeted at the common problems and tasks involved in developing modern
web applications.

Major changes compared to Horde 3.1.2 are:
    * Security Fixes
      - Closed an XSS problem in index.php and improved protection against
        phishing attempts.
    * Bugfixes and improvements
      - Added Kolab group ACL support.
      - Improved import of date and time fields.
      - Fixed synchronization support.
      - Updated Catalan, German and Slovenian translations.

The full list of changes (from version 3.1.2) can be viewed here:

http://cvs.horde.org/diff.php/horde/docs/CHANGES?r1=1.515.2.252&r2=1.515.2.261&ty=h

The Horde 3.1.3 distribution is available from the following locations:

    ftp://ftp.horde.org/pub/horde/horde-3.1.3.tar.gz
    http://ftp.horde.org/pub/horde/horde-3.1.3.tar.gz

Patches against version 3.1.2 are available at:

    ftp://ftp.horde.org/pub/horde/patches/patch-horde-3.1.2-3.1.3.gz
    http://ftp.horde.org/pub/horde/patches/patch-horde-3.1.2-3.1.3.gz

Or, for quicker access, download from your nearest mirror:

    http://www.horde.org/mirrors.php

MD5 sums for the packages are as follows:

    MD5 (horde-3.1.3.tar.gz) = fbc56c608ac81474b846b1b4b7bb5ee7
    MD5 (patch-horde-3.1.2-3.1.3.gz) = 51a53bb750a9b1b7d72e88b0f9706b4d

Have fun!

The Horde Team.


More information about the horde mailing list