commit 24383b26a1af3ede59de4b40a76aa15089f0f820
Author: Miklos Vajna <>
Date:   Sun Sep 27 11:41:08 2009 +0200


diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index 66f2d80..bbe608b 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
@@ -26,6 +26,19 @@

+               <id>619</id>
+               <date>2009-09-27</date>
+               <author>Miklos Vajna</author>
+               <package>horde-webmail</package>
+               <vulnerable>1.2.3-1</vulnerable>
+               <unaffected>1.2.4-1getorin1</unaffected>
+               <bts></bts>
+               <desc>Some vulnerabilities have been reported in Horde 
Groupware and Horde Groupware Webmail Edition, which can be exploited by 
malicious people to conduct cross-site scripting and script insertion attacks 
and by malicious users to compromise a vulnerable system.
+                       1) Two vulnerabilities can be exploited to conduct 
cross-site scripting or script insertion attacks.
+                       2) An error within the form library of the Horde 
Application Framework when handling image form fields can be exploited to 
overwrite arbitrary local files.</desc>
+       </fsa>
+       <fsa>
<author>Miklos Vajna</author>
Frugalware-git mailing list

Reply via email to