[pkg-horde] Re: [sf@sfritsch.de: Bug#396099: CVE-2006-5449: Ingo
Folder Name Shell Command Injection Vulnerability]
Moritz Muehlenhoff
jmm at inutil.org
Wed Nov 1 23:34:17 CET 2006
Lionel Elie Mamane wrote:
> >> At first sight, sarge is affected. I haven't had time yet to
> >> extract/backport a fix, but new upstream version fixing that in sid
> >> will be uploaded in a few minutes.
>
> > Please review and test (I don't have a Horde setup) attached patch
> > for Sarge.
>
> With maintainer hat on, I officially bless this patch. Package based
> on this patch available at http://people.debian.org/~lmamane/ .
>
> Here is a suggested announcement:
Thanks, I'll release tomorrow.
Cheers,
Moritz
More information about the pkg-horde-hackers
mailing list