openSUSE Build Service

Overview Details Repositories Revisions Requests Users Attributes Meta

update for horde3, horde3-dimp, horde3-imp

Warning: Official end of life for horde 3 is April 2012!

Changes in horde3:

- version 3.3.13
- Fixed a XSS vulnerability (CVE-2012-0909).
- Added support for resetting passwords in LDAP.
- Fixed compatibility with Firefox 10.

Changes in horde3-imp:

- Fixed XSS vulnerabilities (CVE-2012-0791).
- Version 4.3.11

Changes in horde3-dimp:

- version 1.1.8
- Fixed XSS vulnerabilities (CVE-2012-0791).

Submitted by Ralf Lang (ralflangb1)

Fixed bugs

bnc#742804

multiple cross-site scripting issues in horde

CVE-CVE-2012-0909

Cross-site scripting (XSS) vulnerability in Horde_Form in Horde Groupware Webmail Edition before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to email verification. NOTE: Some of these details are

CVE-CVE-2012-0791

Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP before 5.0.18 and Horde Groupware Webmail Edition before 4.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) composeCache, (2) rtemode, or (3) filename_* paramete

Places

Fixed bugs

Selected Binaries

Places