Bug#813590: marked as done (php-horde-core: CVE-2015-8807: XSS in Horde_Core_VarRenderer_Html)

Sat, 05 Mar 2016 14:36:44 -0800 

Your message dated Sat, 05 Mar 2016 22:33:57 +0000
with message-id <[email protected]>
and subject line Bug#813590: fixed in php-horde-core 2.15.0+debian0-1+deb8u1
has caused the Debian Bug report #813590,
regarding php-horde-core: CVE-2015-8807: XSS in Horde_Core_VarRenderer_Html
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
813590: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813590
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: php-horde-core
Version: 2.22.5+debian0-1

Will post more info later.

-- 
Mathieu

--- End Message ---
--- Begin Message --- 
Source: php-horde-core
Source-Version: 2.15.0+debian0-1+deb8u1

We believe that the bug you reported is fixed in the latest version of
php-horde-core, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Mathieu Parent <[email protected]> (supplier of updated php-horde-core package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 26 Feb 2016 13:18:06 +0100
Source: php-horde-core
Binary: php-horde-core
Architecture: source all
Version: 2.15.0+debian0-1+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Horde Maintainers <[email protected]>
Changed-By: Mathieu Parent <[email protected]>
Description:
 php-horde-core - ${phppear:summary}
Closes: 813590
Changes:
 php-horde-core (2.15.0+debian0-1+deb8u1) jessie-security; urgency=high
 .
   * CVE-2015-8807: Escape form value, fix XSS in Horde_Core_VarRenderer_Html
     (Closes: #813590)
Checksums-Sha1:
 c277689cf941ce3ab35ffd2b93b5a07f5decca28 2130 
php-horde-core_2.15.0+debian0-1+deb8u1.dsc
 074bb53e43905470410190561c2f8c4caaf86876 1277417 
php-horde-core_2.15.0+debian0.orig.tar.gz
 5eafb1333b0f6717e9df58e5fe33354594aa846a 4988 
php-horde-core_2.15.0+debian0-1+deb8u1.debian.tar.xz
 99dc6e20adef1f73eb61bc22902e22c6b1d86996 923778 
php-horde-core_2.15.0+debian0-1+deb8u1_all.deb
Checksums-Sha256:
 9ba62ea565d9a02b303e36ca1178d97eec7338223ae255a56c7df984c5efaff2 2130 
php-horde-core_2.15.0+debian0-1+deb8u1.dsc
 5aa660783113b39bc86ea60a45b80cb891fc26ff916e035d2825ee928afb3f7c 1277417 
php-horde-core_2.15.0+debian0.orig.tar.gz
 1d4f569a5b9244bc204cbda05d0818d262633f4dd4895b319d6372527a5d22a0 4988 
php-horde-core_2.15.0+debian0-1+deb8u1.debian.tar.xz
 e6a1b3686bc05357a3dc6ef03e9dbca410877a0f07e1f7bc4d9673915f97db0f 923778 
php-horde-core_2.15.0+debian0-1+deb8u1_all.deb
Files:
 3e6e4ed29bd822ca4c6b4b688ea97db7 2130 php extra 
php-horde-core_2.15.0+debian0-1+deb8u1.dsc
 138b8b054989f34e0d7021759524bd7c 1277417 php extra 
php-horde-core_2.15.0+debian0.orig.tar.gz
 f5fdafdbe8bb5e43dd8c07f6c6f4f4a3 4988 php extra 
php-horde-core_2.15.0+debian0-1+deb8u1.debian.tar.xz
 3e417c67309cbc8c12869e06ab55187c 923778 php extra 
php-horde-core_2.15.0+debian0-1+deb8u1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=9Ey2
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to