Your message dated Thu, 29 Jan 2009 03:02:18 +0000
with message-id <[email protected]>
and subject line Bug#513266: fixed in imp4 4.2-4
has caused the Debian Bug report #513266,
regarding imp4: XSS via {smime,pgp}.php
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
513266: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513266
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: imp4
Version: 4.2-3
Severity: important
Tags: patch security
Hello,
Patch inline :
Index: imp/pgp.php
===================================================================
RCS file: /repository/imp/pgp.php,v
retrieving revision 2.79.6.15
diff -u -r2.79.6.15 pgp.php
--- imp/pgp.php 11 Apr 2008 20:50:42 -0000 2.79.6.15
+++ imp/pgp.php 21 Jan 2009 21:57:31 -0000
@@ -40,7 +40,7 @@
$t->set('symmetric', $symmetric);
$t->set('submit_url', Util::addParameter(Horde::applicationUrl('pgp.php'),
'actionID', $symmetric ?
+'process_symmetric_passphrase_dialog' : 'process_passphrase_dialog'));
$t->set('reload', htmlspecialchars(Util::getFormData('reload')));
- $t->set('action', Util::getFormData('passphrase_action'));
+ $t->set('action',
htmlspecialchars(Util::getFormData('passphrase_action')));
$t->set('locked_img', Horde::img('locked.png', _("PGP"), null,
$GLOBALS['registry']->getImageDir('horde')));
echo $t->fetch(IMP_TEMPLATES . '/pgp/passphrase.html');
}
@@ -66,7 +66,7 @@
function _reloadWindow()
{
- Util::closeWindowJS('opener.focus();opener.location.href="' .
Util::getFormData('reload') . '";');
+ Util::closeWindowJS('opener.focus();opener.location.href="' .
htmlspecialchars(Util::getFormData('reload')) . '";');
}
function _getImportKey()
Index: imp/smime.php
===================================================================
RCS file: /repository/imp/smime.php,v
retrieving revision 2.48.4.12
diff -u -r2.48.4.12 smime.php
--- imp/smime.php 8 Apr 2008 04:48:53 -0000 2.48.4.12
+++ imp/smime.php 21 Jan 2009 21:57:31 -0000
@@ -63,7 +63,7 @@
$t->setOption('gettext', true);
$t->set('submit_url',
Util::addParameter(Horde::applicationUrl('smime.php'), 'actionID',
+'process_passphrase_dialog'));
$t->set('reload',
htmlspecialchars(html_entity_decode(Util::getFormData('reload'))));
- $t->set('action', Util::getFormData('passphrase_action'));
+ $t->set('action',
htmlspecialchars(Util::getFormData('passphrase_action')));
$t->set('locked_img', Horde::img('locked.png', _("S/MIME"), null,
$GLOBALS['registry']->getImageDir('horde')));
echo $t->fetch(IMP_TEMPLATES . '/smime/passphrase.html');
}
@@ -79,7 +79,7 @@
function _reloadWindow()
{
- Util::closeWindowJS('opener.focus();opener.location.href="' .
Util::getFormData('reload') . '";');
+ Util::closeWindowJS('opener.focus();opener.location.href="' .
htmlspecialchars(Util::getFormData('reload')) . '";');
}
function _textWindowOutput($filename, $msg, $html = false)
Regards,
--
Gregory Colpart <[email protected]> GnuPG:1024D/C1027A0E
Evolix - Informatique et Logiciels Libres http://www.evolix.fr/
--- End Message ---
--- Begin Message ---
Source: imp4
Source-Version: 4.2-4
We believe that the bug you reported is fixed in the latest version of
imp4, which is due to be installed in the Debian FTP archive:
imp4_4.2-4.diff.gz
to pool/main/i/imp4/imp4_4.2-4.diff.gz
imp4_4.2-4.dsc
to pool/main/i/imp4/imp4_4.2-4.dsc
imp4_4.2-4_all.deb
to pool/main/i/imp4/imp4_4.2-4_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Gregory Colpart <[email protected]> (supplier of updated imp4 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 29 Jan 2009 02:38:27 +0100
Source: imp4
Binary: imp4
Architecture: source all
Version: 4.2-4
Distribution: unstable
Urgency: high
Maintainer: Horde Maintainers <[email protected]>
Changed-By: Gregory Colpart <[email protected]>
Description:
imp4 - webmail component for horde framework
Closes: 513266
Changes:
imp4 (4.2-4) unstable; urgency=high
.
* Include patches from Horde upstream to fix unescaped output in several
scripts (imp/{smime,pgp}.php and message.php). (Closes: #513266)
Checksums-Sha1:
5efbc4a7a41b8f2e098b68021f92f7fa8ef9cc78 1091 imp4_4.2-4.dsc
29a562900e5f2b778b3285ede3818332447bd0d0 14993 imp4_4.2-4.diff.gz
82fd3e41c936da3b5f77bb1f8474c9014cdba07a 4932510 imp4_4.2-4_all.deb
Checksums-Sha256:
6bb5688b049ffb5ffc3cc01a43db944a3d8bfd3f4cccbab25a0cb0d95ea828d5 1091
imp4_4.2-4.dsc
8d6a963dbbf8379c01bc071281c64d85e5f5eee5e29313d27a45b7c62a84f867 14993
imp4_4.2-4.diff.gz
b6b10816ea7c63ca745020c5e3f9e228b449c68c67fe05b1052315a91c195d1f 4932510
imp4_4.2-4_all.deb
Files:
8a6165753abf03f7cc45fc26de4b6bd3 1091 web optional imp4_4.2-4.dsc
47ba79b559395cea2adc264580082465 14993 web optional imp4_4.2-4.diff.gz
eff2ce94796bf04d66c61a303179c5bd 4932510 web optional imp4_4.2-4_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkmBDgoACgkQMhdcDcECeg74ewCfSZm1etF+xijEu4n7UC+RdLYS
SbEAn0IiP61AB7JqVGUz3roVoQ1YlAS4
=9kvA
-----END PGP SIGNATURE-----
--- End Message ---
