[pkg-horde] Re: [sf@sfritsch.de: Bug#396099: CVE-2006-5449: Ingo Folder Name Shell Command Injection Vulnerability]

Moritz Muehlenhoff jmm at inutil.org
Wed Nov 1 23:34:17 CET 2006

Lionel Elie Mamane wrote:
> >> At first sight, sarge is affected. I haven't had time yet to
> >> extract/backport a fix, but new upstream version fixing that in sid
> >> will be uploaded in a few minutes.
> > Please review and test (I don't have a Horde setup) attached patch
> > for Sarge.
> With maintainer hat on, I officially bless this patch. Package based
> on this patch available at http://people.debian.org/~lmamane/ .
> Here is a suggested announcement:

Thanks, I'll release tomorrow.


More information about the pkg-horde-hackers mailing list