The branch "master" has been updated. The following is a summary of the commits.
from: 41e4cf480f8dc5a2dc66899f7ff24efd745fff73 e10538b Update package.xml. 01a11cc Protect against RCE vulnerabilities by properly sanitizing arguments. 2b8a6fe Ensure $this->_data is initialized. 772d35c Fix package version. af03d8d BFN Summary: http://github.com/horde/horde/compare/41e4cf480f8dc5a2dc66899f7ff24efd745fff73...af03d8d3ba972b717de98e8cf0633c37a130315b ----------------------------------------------------------------------- commit e10538bee8d84807701e84c9ad9aa05a1bbf895a Author: Michael J Rubinsky <[email protected]> Date: Sun Jun 11 11:36:22 2017 -0400 Update package.xml. framework/ActiveSync/package.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) http://github.com/horde/horde/commit/e10538bee8d84807701e84c9ad9aa05a1bbf895a ----------------------------------------------------------------------- commit 01a11ccd37149101d67e0b20261fa48ab07dae13 Author: Michael J Rubinsky <[email protected]> Date: Wed Jun 21 09:53:05 2017 -0400 Protect against RCE vulnerabilities by properly sanitizing arguments. CVE-2017-9774 framework/Image/lib/Horde/Image/Base.php | 4 ++-- framework/Image/lib/Horde/Image/Im.php | 29 +++++++++++++++++++++-------- 2 files changed, 23 insertions(+), 10 deletions(-) http://github.com/horde/horde/commit/01a11ccd37149101d67e0b20261fa48ab07dae13 ----------------------------------------------------------------------- commit 2b8a6fe1a5fc0fc662178145f853c65956985538 Author: Michael J Rubinsky <[email protected]> Date: Wed Jun 21 09:56:16 2017 -0400 Ensure $this->_data is initialized. Prevents possible DOS attack by preventing an infinite loop in certain cases (CVE-2017-9773). framework/Image/lib/Horde/Image/Null.php | 2 ++ 1 file changed, 2 insertions(+) http://github.com/horde/horde/commit/2b8a6fe1a5fc0fc662178145f853c65956985538 ----------------------------------------------------------------------- commit 772d35c11491683d7e1007c1bdd5c31d99e833c1 Author: Michael J Rubinsky <[email protected]> Date: Wed Jun 21 10:16:04 2017 -0400 Fix package version. This should have been 2.5.0 framework/Image/package.xml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) http://github.com/horde/horde/commit/772d35c11491683d7e1007c1bdd5c31d99e833c1 ----------------------------------------------------------------------- commit af03d8d3ba972b717de98e8cf0633c37a130315b Author: Michael J Rubinsky <[email protected]> Date: Wed Jun 21 10:17:26 2017 -0400 BFN framework/Image/package.xml | 4 ++++ 1 file changed, 4 insertions(+) http://github.com/horde/horde/commit/af03d8d3ba972b717de98e8cf0633c37a130315b -- commits mailing list Frequently Asked Questions: http://wiki.horde.org/FAQ To unsubscribe, mail: [email protected]
