FEDORA-2016-3d1183830b — security update for php-horde-horde

stable

php-horde-horde-5.2.9-1.fc22

FEDORA-2016-3d1183830b created by remi 9 years ago for Fedora 22

horde 5.2.9

[jan] SECURITY: Fix XSS vulnerability in menu bar exposed by few applications (Bug #14213).
[jan] Add more detailed user DN settings to Kolab group configuration (Request #11737).
[jan] Fix returning to last page after problem reporting from AJAX pages (Bug #12112).
[jan] Fix custom database configuration for groups (Bug #11664).
[jan] Use access rules compatible with both Apache 2.2 and 2.4.
[mjr] Fix reporting results for non-select queries in administrative sql shell (Bug #14216).

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-3d1183830b

This update has been submitted for testing by remi.

9 years ago

remi edited this update.

9 years ago

This update has been pushed to testing.

9 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

9 years ago

This update has been submitted for stable by remi.

9 years ago

This update has been pushed to stable.

9 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

9 years ago

in testing

9 years ago

in stable

9 years ago

modified

9 years ago

Builds

php-horde-horde-5.2.9-1.fc22

BZ#1304397 CVE-2016-2228 php-horde: reflected cross-site scripting

BZ#1304400 CVE-2016-2228 php-horde-horde: php-horde: reflected cross-site scripting [fedora-all]

BZ#1305597 CVE-2015-8807 php-horde-Horde: Cross-site scripting in _renderVarInput_number

BZ#1305598 CVE-2015-8807 php-horde-Horde: Cross-site scripting in _renderVarInput_number [fedora-all]

php-horde-horde-5.2.9-1.fc22

Automated Test Results

None