[pkg-horde] Bug#803641: Bug#803641: Aw: Re: Bug#803641: php-horde: Multiple CSRF Vulnerabilities

Mathieu Parent math.parent at gmail.com
Tue Nov 3 20:24:33 UTC 2015

2015-11-02 14:27 GMT+01:00 Philip Frei <pjf at gmx.de>:
>> This seems to be:
>> https://github.com/horde/horde/commit/a199d74932c902844514b2a83d21e7e221257dae
>> I will prepare an upload for next jessie point-release, unless you
>> think it should go to the security mirors sooner.
> Thanks a lot!
> I think Horde's command shells are hardly used (I, for one don't use them very often).

But it is enabled by default. I have tested and uploaded the fix to
security-master-unembargoed, in coordination with the security team.
If I understand correctly, it will go to the security mirrors soon.



More information about the pkg-horde-hackers mailing list