Ubuntu
horde3 package

lp:ubuntu/hardy/horde3

  1. Hardy (8.04)
  2. hardy
Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/hardy/horde3
Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

12. By Gregory Colpart (evolix)

* New upstream release.
* This new version has security fix: fix arbitrary file inclusion through
  abuse of the theme preference (see CVE-2008-1284 for more informations).
  (Closes: #470640)
* Fix typo in debian/rules comments.
* Add php-net-imap package in "Suggests" field. (Closes: #470283)
* Add libgeoip1 package in "Suggests" field. (Closes: #376935)

11. By Gregory Colpart (evolix)

* New upstream release.
* This new version has security fixes : privilege escalation in the Horde
  API and XSS vulnerabilities (see CVE-2007-6018 for more informations).
  (Closes: #461131)
* This new version fixes also translation error in it_IT locale
  (Closes: #459555)
* Import fix from Horde CVS to correct invalid entities in es_ES
  translantion (thanks to Adrian Santos Marrero <email address hidden>)
  (Closes: #461400)
* Update to standards version 3.7.3, no further required changes.
* Use now Vcs-* fields in debian/control.
* Remove empty directories which causes lintian warnings.
* Bump debhelper compat level to 5.
* Add Homepage field.

10. By Gregory Colpart (evolix)

* New upstream release.
* Transition to PHP5 for Recommends and Suggests fields. (Closes: #432237)
* Remove old phpapi-* from Depends: (Closes: #420644)
* Clean Depends, Recommends and Suggests fields.
* Remove exec right for XML files in debian/rules.
* Add locales in Recommends.
* Disable upstream _detect_webroot() function (unsable in Debian).
* Fix XSS vulnerability. See CVE-2007-1473 for more information.
  (Closes: #434045)

9. By Ola Lundqvist

Changed webroot from /horde to /horde3, especially regarding cookie
handling, closes: #391493.

8. By Ola Lundqvist

Correction for arbitrary file deletion vulnerability,
closes: #415116. Thanks to Paul TBBle Hampson <email address hidden>
for providing the patch.

7. By Ola Lundqvist

Changed the default cookie path from /horde to horde3, closes:
#391493. Thanks for Gregory Colpart <email address hidden> for committing
this change and to Lorenzo Bettini <email address hidden> for
suggesting it.

6. By Ola Lundqvist

* New upstream version, closes: #383416. This is a bugfix release to
  correct CVE-2006-4256.
* Now suggests gettext, closes: #385457.

5. By Ola Lundqvist

The SuSE maintainer found several XSS isses in Horde. See
CVE-2006-2195 for more information. Thanks to Moritz Muehlenhoff
<email address hidden> for providing the patch.

4. By Lionel Elie Mamane <email address hidden>

[ Lionel Elie Mamane <email address hidden> ]
* New upstream version
  - Close remote arbitrary command execution hole (closes: #360023)
* Really exclude {arch} directory from being installed in binary
  package.

3. By Ola Lundqvist

Correct fix for weatherdotcom.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/lucid/horde3
This branch contains Public information 
Everyone can see this information.

Subscribers