Stuart Herbert wrote: > I've just masked the package 'www-apps/phpgroupware', and will be > dropping it from the tree soon. There are a number of issues with the > project, including: > > * Outstanding security bugs > * Upstream homepage no longer available > * No real releases in over a year
FYI, I just received the following from Dave Hall <[EMAIL PROTECTED]> : > Hi all, > > You are encouraged to update to the latest version of phpGroupWare - > 0.9.16.009. The release contains several major bug fixes as well as > some important security fixes. > > You can grab the new version from - > http://sourceforge.net/project/showfiles.php?group_id=7305 > > Or update from cvs > $ cd /path/to/phpgroupware > $ export CVS_RSH=ssh > $ cvs update -dP > > Changelog is as follows: > > Fixes for the following security issues: > * phpSysInfo > - XSS CVE-2005-0870 > - arbitrary file inclusion CVE-2005-3347 > - anti XSS measure CVE-2005-3348 > * FUDForum > - arbitary code execution SA16627 > > Major bug fixes: > - LDAP account returns only phpGroupWare accounts > - accounts list pages and sorts properly > - Next account id is properly generated > - First group shows properly in ACL manager > - Calendar footer now shows again > - Calendar alarms can be set, editted and viewed > - Fix apps to work with anti XSS code from 007/8 > - News Admin > - Sitemgr > > Additional languages and translated phrases > > We hope to have our website back up and running in the 24hours, so for > the inconvenience this may be causing people. > > Cheers > Dave So it looks like it's still maintained and the homepage problem is temporary... -- Koon -- gentoo-dev@gentoo.org mailing list
