Secunia Security Advisory - Debian has issued an update for horde2. This fixes two vulnerabilities, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
dc3e1a75028bbcc6dded0e115234a45cae56b22af256e6f2c0c43f60763f1d57
TITLE:
Debian update for horde2
SECUNIA ADVISORY ID:
SA19692
VERIFY ADVISORY:
http://secunia.com/advisories/19692/
CRITICAL:
Highly critical
IMPACT:
Exposure of sensitive information, System access
WHERE:
>From remote
OPERATING SYSTEM:
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
DESCRIPTION:
Debian has issued an update for horde2. This fixes two
vulnerabilities, which can be exploited by malicious people to
disclose sensitive information and compromise a vulnerable system.
For more information:
SA19246
SA19485
SOLUTION:
Apply updated packages.
-- Debian GNU/Linux 3.1 alias sarge --
Source archives:
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge2.dsc
Size/MD5 checksum: 575 acf3f1924f04e2faddfd06ba9b01820e
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge2.diff.gz
Size/MD5 checksum: 39504 fb338c016b70e69fa4b867fa116b86dc
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8.orig.tar.gz
Size/MD5 checksum: 683005 89961af4e4488a908147d7b3a0dc3b44
Architecture independent components:
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge2_all.deb
Size/MD5 checksum: 721398 35fa1bf8bf8b4f2be1076501b984367a
ORIGINAL ADVISORY:
http://www.debian.org/security/2006/dsa-1034
OTHER REFERENCES:
SA19246:
http://secunia.com/advisories/19246/
SA19485:
http://secunia.com/advisories/19485/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------