Fedora Linux Distribution - Page 771
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
This release consists of bugfixes and minor portability improvements. Some potential buffer overflows and arithmetic overflows were fixed, including CVE-2017-12067. A bug triggered by very large bitmaps has been fixed.
**Horde_Form 2.0.18** * [jan] SECURITY: Fix XSS vulnerability with form sections.
**Horde_Url 2.2.6** * [jan] SECURITY: Fix XSS vulnerability with pathinfo component in toString().
**kronolith 4.2.22** * [jan] SECURITY: Fix open redirects. * [mjr] Prevent broken iCalendar files from causing fatal errors (Bug #14672). * [jan] Work around calendar servers advertising as CalDAV-capable, but ignoring CalDAV requests (Bug #14662). * [jan] Fix displaying yesterday's event in Prior Events portal block (This email address is being protected from spambots. You need JavaScript enabled to view it., Bug #14638).
**nag 4.2.15** * [jan] SECURITY: Fix open redirects. * [mjr] Fix handling of delayed start dates (Bug #14634).
**turba 4.2.20** * [jan] SECURITY: Fix open redirects. * [jan] Fix creating address books with the external API.
This is an update fixing CVE-2017-10965 and CVE-2017-10966.
**Horde_Core 2.30.0** * [jan] SECURITY: Fix XSS vulnerability with pathinfo component in Horde::selfUrl(). * [jan] Deprecate Horde::redirect(). * [jan] Add Horde::signUrl() and Horde::verifySignedUrl().
**Horde_Core 2.30.0** * [jan] SECURITY: Fix XSS vulnerability with pathinfo component in Horde::selfUrl(). * [jan] Deprecate Horde::redirect(). * [jan] Add Horde::signUrl() and Horde::verifySignedUrl().
**Horde_Form 2.0.18** * [jan] SECURITY: Fix XSS vulnerability with form sections.
**Horde_Url 2.2.6** * [jan] SECURITY: Fix XSS vulnerability with pathinfo component in toString().