[pkg-horde] Re: horde problem.
Martin Schulze
joey at infodrom.org
Wed Mar 29 17:00:23 UTC 2006
Lionel Elie Mamane wrote:
> On Wed, Mar 29, 2006 at 05:25:34PM +0200, Lionel Elie Mamane wrote:
> > On Wed, Mar 29, 2006 at 05:04:27PM +0200, Martin Schulze wrote:
>
> >> I've been told (haven't had the time to check on my own) that a
> >> very serious security problem in horde has been discovered.
>
> > Yes. Remote code execution. I don't know the details. horde and
> > horde2 are not affected, horde3 all versions up to 3.1.1 and 3.0.10
> > are affected.
>
> There doesn't seem to be a CVE number for that?
Correct. One is requested already, though. I'll pass it to you once
I see it (or Steve can do that).
> But there is another issue, namely CVE-2006-1260. I'm investigating
> it.
Oh. Thanks.
Regards,
Joey
--
The only stupid question is the unasked one.
More information about the pkg-horde-hackers
mailing list