Accepted php-horde-trean 1.1.1-2+deb8u1 (source all) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 10 Apr 2020 20:33:40 -0400
Source: php-horde-trean
Binary: php-horde-trean
Architecture: source all
Version: 1.1.1-2+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Horde Maintainers <pkg-horde-hackers@lists.alioth.debian.org>
Changed-By: Roberto C. Sanchez <roberto@debian.org>
Description:
php-horde-trean - ${phppear:summary}
Closes: 955019
Changes:
php-horde-trean (1.1.1-2+deb8u1) jessie-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* Fix CVE-2020-8865:
The Horde Application Framework contained a directory traversal
vulnerability resulting from insufficient input sanitization. An
authenticated remote attacker could use this flaw to execute code in the
context of the web server user. (Closes: #955019)
Checksums-Sha1:
965c47e605614d2c00cda4fdee91f5e0363d3b81 2058 php-horde-trean_1.1.1-2+deb8u1.dsc
72508f8775afd9059b093f6e78fb48664b0b1090 592386 php-horde-trean_1.1.1.orig.tar.gz
ffd11c3607ea5440f8301483a4bff8e1c6440047 3532 php-horde-trean_1.1.1-2+deb8u1.debian.tar.xz
afaba5c0417a9989c75f973d0211d276296559d1 351008 php-horde-trean_1.1.1-2+deb8u1_all.deb
Checksums-Sha256:
0cb678d81b4d4a55b87080dbfa2578c302109fe2416a5eb6b4f8ba65eccd3ac6 2058 php-horde-trean_1.1.1-2+deb8u1.dsc
e15cd3a923a04ea11e7e97a915b904112c83f6339f7345bc4a32b33a13662976 592386 php-horde-trean_1.1.1.orig.tar.gz
5d1a9208df0a7e7d1bdcf6adb9157c1e57a9d4b21d13a84b5ed980e3dda77bc5 3532 php-horde-trean_1.1.1-2+deb8u1.debian.tar.xz
68a5d7de6575821f8b2a5e7ce78211db4ff6624986125aedbd0902d46cf85464 351008 php-horde-trean_1.1.1-2+deb8u1_all.deb
Files:
d8c29a381d44bf5d658930b000997d3e 2058 php extra php-horde-trean_1.1.1-2+deb8u1.dsc
9da1d62a55e193d6efc3d49b6e7003dc 592386 php extra php-horde-trean_1.1.1.orig.tar.gz
c0e74f614a46f76e4ead250e31753ae1 3532 php extra php-horde-trean_1.1.1-2+deb8u1.debian.tar.xz
78a16ef5e13c45f5c04c310610b764ac 351008 php extra php-horde-trean_1.1.1-2+deb8u1_all.deb
-----BEGIN PGP SIGNATURE-----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=xtes
-----END PGP SIGNATURE-----