[pkg-horde] Bug#585165: Bug#585165: CVE-2010-1916: Security issue in Xinha
Alexander Reichle-Schmehl
tolimar at debian.org
Thu Jul 15 12:51:07 UTC 2010
Hi!
* Gregory Colpart <reg at evolix.fr> [100622 01:48]:
[..]
> > Please check if your code copy is affected and update the internal copy.
> I think code copy of xinha in Horde is not affected because there
> is no PHP code from Xinha on it. Majority of Xinha plugins are
> not present.
Is there a specific reason, why this bug is open, if the problem doesn't
exist?
Okay, there is still:
* Moritz Muehlenhoff <jmm at debian.org> [100609 19:05]:
[..]
> There's already an ITP for xinha (Bug 479708) and since four packages
> currently in the archive use xinha (openacs, Horde, serendipity and
> dotlrn) it would be nice if we could migrate to a single package
> for Squeeze.
But a the package doesn't seem to have made much progress recently, what
about a:
retitle 585165 Please use system xinha instead of own copy
severity 585165 important
block 585165 bye 479708
Best Regards,
Alexander
More information about the pkg-horde-hackers
mailing list