UbuntuUpdates.org

Package "horde3"

Name: horde3

Description:

horde web application framework
Latest version: 3.3.12+debian0-2
Release: precise (12.04)
Level: base
Repository: universe
Homepage: http://www.horde.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "horde3"

All arch deb package
APT INSTALL

Other versions of "horde3" in Precise

No other version of this package is available in the Precise release.

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: *DELETED* 2012-03-06 10:15:58 UTC
No changelog for deleted or moved packages.

Version: 3.3.12+debian0-2 2012-02-15 00:03:03 UTC

horde3 (3.3.12+debian0-2) unstable; urgency=emergency

  * Remove backdoor in emergency (upstream server is compromised).
    CVE-2012-0209

 -- Gregory Colpart Thu, 09 Feb 2012 00:41:34 +0100
Source diff to previous version
CVE-2012-0209 horde backdoor

Version: 3.3.12+debian0-1 2012-01-22 03:03:01 UTC

horde3 (3.3.12+debian0-1) unstable; urgency=low

  * New upstream release (Closes: #636592)
    - Fix 'return value of new by reference is deprecated', at least in
      lib/Horde/Kolab/Server/Object.php (Closes: #630142, #601186)
    - pgsql create script fixed (Closes: #508571)
    - Fix dirty flag handling when saving prefs to files (Closes: #538027)
    - Fix preferences management regression (Closes: #634962)
    - Fix SQL error during cache cleanup (Closes: #566610)
    - Fix undefined index: token_lifetime (Closes: #629006)
  * Housekeeping (thanks to lintian):
    - spelling error in README.Debian (writeable writable)
    - Update to standards version 3.9.2, no change required
    - Don't use asterisks in NEWS.Debian
    - Use versioned LGPL-2.1 in copyright
    - Add minimal build-indep and build-arch targets to d/rules
  * Switch to dpkg-source 3.0 (quilt) format
  * Remove conflict on horde and old turba2 (very old packages)

 -- Mathieu Parent Sat, 07 Jan 2012 12:23:19 +0100
Source diff to previous version
636592 horde3: New versions of horde are available: 3.3.12 and 4.0.8 - Debian Bug report logs
630142 Regression: bug #594541 is back? - Debian Bug report logs
508571 horde3: pgsql create script fails - Debian Bug report logs
538027 horde3: saving prefs to files preserves the dirty flag - Debian Bug report logs
634962 horde3: Problem with latest security fix for lenny - Required secret is invalid - Debian Bug report logs
566610 horde3: Horde SQL cache cleanup fails due to DB error (malformed SQL) - Debian Bug report logs
629006 horde3: Notice "Undefined index: token_lifetime" when saving options. Saving option fails. - Debian Bug report logs

Version: 3.3.8+debian0-2 2011-12-18 16:16:22 UTC

horde3 (3.3.8+debian0-2) unstable; urgency=medium

  * Backport security patches from 3.3.9 and 3.3.10 to fix CVE-2010-3077
    and CVE-2010-3694 (Closes: #598582)
  * Backport upstream fix from 3.3.10 for SyncML bug: page sometimes deleting
    more anchors than selected.
  * Fix annoying bug in temp-cleanup.cron (Closes: #597603)

 -- Gregory Colpart Wed, 03 Nov 2010 23:44:17 +0100
598582 horde3: Four security issues in Horde - Debian Bug report logs
597603 horde3: temp-cleanup.cron returns failure if last "find" command exits with non-zero code - Debian Bug report logs
CVE-2010-3077 Cross-site scripting (XSS) vulnerability in util/icon_browser.php in the Horde Application Framework before 3.3.9 allows remote attackers to inject ar
CVE-2010-3694 Cross-site request forgery (CSRF) vulnerability in the Horde Application Framework before 3.3.9 allows remote attackers to hijack the authentication o

Version: *DELETED* 2011-12-18 14:14:38 UTC
No changelog for deleted or moved packages.


About   -   Send Feedback to @ubuntu_updates