Zitat von Jochen Roderburg <[email protected]>:
Zitat von Michael M Slusarz <[email protected]>:
Quoting Jan Schneider <[email protected]>:
Zitat von Michael M Slusarz <[email protected]>:
Quoting Suzuki Takayuki <[email protected]>:
Hello All,
I'm using IMP H3 (4.3.10) (Horde 3 Stable Release) with my mail server
and provide the service to my colleagues. As I found a vulnerability :
CVE-2012-0791 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0791
, I want to apply patches to my Horde IMP for the fix.
So, does someone have any plan to fix the issue in IMP H3? Though I
should update to IMP H4 , I don't want it now because it may make some
confusion in my colleagues.
Please give me any advice.
There are no plans to fix H3. I do not even know if these
vulnerabilities affect H3.
We MUST fix this, because we still support Horde 3 with security
fixes. I already applied the fixes for Horde_Form and the contacts
popup.
I'd appreciate if you could take a look at the other fixes for IMP.
Jan.
done
___________________________________
Michael Slusarz [[email protected]]
Will this end up now in a security/bugfix release of Horde3/IMP4 etc. ?
Yes.
Jan.
--
Do you need professional PHP or Horde consulting?
http://horde.org/consulting/
--
IMP mailing list
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: [email protected]
