-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 16 Jul 2011 11:51:07 +1000 Source: horde3 Binary: horde3 Architecture: source all Version: 3.2.2+debian0-2+lenny3 Distribution: oldstable-security Urgency: high Maintainer: Horde Maintainers Changed-By: Steffen Joeris Description: horde3 - horde web application framework Closes: 598582 Changes: horde3 (3.2.2+debian0-2+lenny3) oldstable-security; urgency=high . * Non-maintainer uploaid by the security team (Closes: #598582) * Fix cross-site scripting via the subdir parameter in util/icon_browser.php Fixes: CVE-2010-3077 * Fix cross-site request forgery via preference forms Fixes: CVE-2010-3694 Checksums-Sha1: e591a89d6ba098add91f71de4e06a0c2868cd96e 1389 horde3_3.2.2+debian0-2+lenny3.dsc b321f8de53d48cf3470754d0d05aab96fceba729 28880 horde3_3.2.2+debian0-2+lenny3.diff.gz 09842636ae0979ea39ed251d2e3b8783336db903 7235496 horde3_3.2.2+debian0-2+lenny3_all.deb Checksums-Sha256: ce3366926be2f87c571a91a1c6349c9abfb698c0a30cc50fe494469dff3e674c 1389 horde3_3.2.2+debian0-2+lenny3.dsc 09f7f6feba2deb4fa3c91449f4865aaa39da5d3646fea523dde95677724a0f16 28880 horde3_3.2.2+debian0-2+lenny3.diff.gz ac6060bda46ef6bc455fb8a22d6b7c8a0c1683bf7af24b74a458cce9f58282a9 7235496 horde3_3.2.2+debian0-2+lenny3_all.deb Files: ffd4af0b819efcb7a94e8e17949ffaa2 1389 web optional horde3_3.2.2+debian0-2+lenny3.dsc 43b849ad032ea35b012a7645c8b00333 28880 web optional horde3_3.2.2+debian0-2+lenny3.diff.gz 99ae16ebdf0ea5898bc7087f3558aa9d 7235496 web optional horde3_3.2.2+debian0-2+lenny3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk4g73IACgkQ62zWxYk/rQe9XACgxAl/NGjPF6Duc8wA7NCN0b4O Ev8AoIEEE0Q7o1PTaiGMyZMltU1e06ZE =NkDe -----END PGP SIGNATURE-----