Secunia Security Advisory - Debian has issued an update for horde2. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
1c9077a871e5e34d6ef49a7399130cfe175e78cd1bf7f74728fb41ee972da9de
----------------------------------------------------------------------
Want to join the Secunia Security Team?
Secunia offers a position as a security specialist, where your daily
work involves reverse engineering of software and exploit code,
auditing of source code, and analysis of vulnerability reports.
http://secunia.com/secunia_security_specialist/
----------------------------------------------------------------------
TITLE:
Debian update for horde2
SECUNIA ADVISORY ID:
SA20750
VERIFY ADVISORY:
http://secunia.com/advisories/20750/
CRITICAL:
Less critical
IMPACT:
Cross Site Scripting
WHERE:
>From remote
OPERATING SYSTEM:
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
DESCRIPTION:
Debian has issued an update for horde2. This fixes some
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting attacks.
For more information:
SA20661
SOLUTION:
Apply updated package.
-- Debian GNU/Linux 3.1 alias sarge --
Source archives:
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge3.dsc
Size/MD5 checksum: 575 b4a9b2a7a94bed813b2e827850dcba6a
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge3.diff.gz
Size/MD5 checksum: 39898 4c3c63114431c7f5a41548e35af5dff6
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8.orig.tar.gz
Size/MD5 checksum: 683005 89961af4e4488a908147d7b3a0dc3b44
Architecture independent components:
http://security.debian.org/pool/updates/main/h/horde2/horde2_2.2.8-1sarge3_all.deb
Size/MD5 checksum: 721460 9902f0e379cccfa8cc6da1e16375379c
ORIGINAL ADVISORY:
http://www.us.debian.org/security/2006/dsa-1099
OTHER REFERENCES:
SA20661:
http://secunia.com/advisories/20661/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------