[Git][security-tracker-team/security-tracker][master] Reserve DLA-2349-1 for php-horde

Sat Aug 29 16:39:24 BST 2020


Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
415e3b18 by Mike Gabriel at 2020-08-29T17:38:52+02:00
Reserve DLA-2349-1 for php-horde

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -172379,7 +172379,6 @@ CVE-2017-16908 (In Horde Groupware 5.2.19, there is XSS via the Name field durin
 CVE-2017-16907 (In Horde Groupware 5.2.19 and 5.2.21, there is XSS via the Color field ...)
 	{DLA-1536-1 DLA-1535-1}
 	- php-horde 5.2.18+debian0-1 (bug #909739)
-	[stretch] - php-horde <no-dsa> (Minor issue)
 	- php-horde-core 2.31.3+debian0-1 (bug #909800)
 	NOTE: http://code610.blogspot.com/2017/11/rce-via-xss-horde-5219.html
 	NOTE: https://bugs.horde.org/ticket/14857


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Aug 2020] DLA-2349-1 php-horde - security update
+	{CVE-2017-16907}
+	[stretch] - php-horde 5.2.13+debian0-1+deb9u3
 [29 Aug 2020] DLA-2348-1 php-horde-core - security update
 	{CVE-2017-16907}
 	[stretch] - php-horde-core 2.27.6+debian1-2+deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -131,8 +131,6 @@ opendmarc
 --
 openexr (Adrian Bunk)
 --
-php-horde (Mike Gabriel)
---
 php-horde-kronolith (Mike Gabriel)
 --
 php-horde-tream (Mike Gabriel)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/415e3b1838934a68747eaa9ffb17a4ad69a31e55

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/415e3b1838934a68747eaa9ffb17a4ad69a31e55
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200829/b62197be/attachment-0001.html>
