LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

Plugging into GCC

LWN.net Weekly Edition for October 2, 2008

Ubuntu debuts its Upstream Report

openSUSE and the distribution of proprietary software

LPC: What's happening with webcams

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

horde3: remote email deletion

Package(s):horde3 CVE #(s):CVE-2007-6018
Created:January 21, 2008 Updated:February 29, 2008
Description:

From the Debian advisory:

Ulf Harnhammer discovered that the HTML filter of the Horde web application framework performed insufficient input sanitising, which may lead to the deletion of emails if a user is tricked into viewing a malformed email inside the Imp client.

Alerts:
Fedora FEDORA-2008-2087 2008-02-28
Fedora FEDORA-2008-2040 2008-02-28
Fedora FEDORA-2008-2087 2008-02-28
Fedora FEDORA-2008-2040 2008-02-28
Fedora FEDORA-2008-2087 2008-02-28
Fedora FEDORA-2008-2040 2008-02-28
Gentoo 200802-03 2008-02-11
Debian DSA-1470-1 2008-01-20
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds