[horde3] [CVE-2008-1284] information disclosure
Bug #203456 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
horde3 (Debian) |
Fix Released
|
Unknown
|
|||
horde3 (Ubuntu) |
Fix Released
|
High
|
William Grant | ||
Dapper |
Fix Released
|
High
|
Emanuele Gentili | ||
Edgy |
Fix Released
|
High
|
Emanuele Gentili | ||
Feisty |
Fix Released
|
High
|
Emanuele Gentili | ||
Gutsy |
Fix Released
|
High
|
Emanuele Gentili | ||
Hardy |
Fix Released
|
High
|
William Grant |
Bug Description
Binary package hint: horde3
References:
DSA-1519-1 (http://
Quoting:
"It was discovered that the Horde web application framework permits arbitrary
file inclusion by a remote attacker through the theme preference parameter."
CVE References
Changed in horde3: | |
status: | Unknown → Fix Released |
Changed in horde3: | |
status: | In Progress → Fix Committed |
status: | In Progress → Fix Committed |
status: | In Progress → Fix Committed |
status: | In Progress → Fix Committed |
Changed in horde3: | |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Fixed in 3.1.7-1, which I'm requesting a sync for.