Mike Gabriel pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
415e3b18 by Mike Gabriel at 2020-08-29T17:38:52+02:00
Reserve DLA-2349-1 for php-horde
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -172379,7 +172379,6 @@ CVE-2017-16908 (In Horde Groupware 5.2.19, there is
XSS via the Name field durin
CVE-2017-16907 (In Horde Groupware 5.2.19 and 5.2.21, there is XSS via the
Color field ...)
{DLA-1536-1 DLA-1535-1}
- php-horde 5.2.18+debian0-1 (bug #909739)
- [stretch] - php-horde <no-dsa> (Minor issue)
- php-horde-core 2.31.3+debian0-1 (bug #909800)
NOTE: http://code610.blogspot.com/2017/11/rce-via-xss-horde-5219.html
NOTE: https://bugs.horde.org/ticket/14857
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Aug 2020] DLA-2349-1 php-horde - security update
+ {CVE-2017-16907}
+ [stretch] - php-horde 5.2.13+debian0-1+deb9u3
[29 Aug 2020] DLA-2348-1 php-horde-core - security update
{CVE-2017-16907}
[stretch] - php-horde-core 2.27.6+debian1-2+deb9u1
=====================================
data/dla-needed.txt
=====================================
@@ -131,8 +131,6 @@ opendmarc
--
openexr (Adrian Bunk)
--
-php-horde (Mike Gabriel)
---
php-horde-kronolith (Mike Gabriel)
--
php-horde-tream (Mike Gabriel)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/415e3b1838934a68747eaa9ffb17a4ad69a31e55
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/415e3b1838934a68747eaa9ffb17a4ad69a31e55
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
