Stay Secure with the Latest Linux Advisories

security advisoryphp-hordefederal 32

Fedora 32: PHP-Horde-Kronolith 2020-2f88bad887 Severe: Notification Leak

**kronolith 4.2.29** * [mjr] Fix regresssion in event modification notifications (Bug #15022). ---- **kronolith 4.2.28** * [mjr] **SECURITY**: Don't leak private details when sending notifications for private events (Bug #15011). * [mjr] Fix regression in display of clickable event URL property (Bug #14941).. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-2f88bad887 2020-07-22 01:05:11.869436 --------------------------------------------------------------------------------Name : php-horde-kronolith Product : Fedora 32 Version : 4.2.29 Release : 1.fc32 URL : https://www.horde.org/apps/kronolith Summary : A web based calendar Description : Kronolith is the Horde calendar application. It provides web-based calendars backed by a SQL database or a Kolab server. Supported features include Ajax and mobile interfaces, shared calendars, remote calendars, invitation management (iCalendar/iTip), free/busy management, resource management, alarms, recurring events, and a sophisticated day/week view which handles arbitrary numbers of overlapping events. --------------------------------------------------------------------------------Update Information: **kronolith 4.2.29** * [mjr] Fix regresssion in event modification notifications (Bug #15022). ---- **kronolith 4.2.28** * [mjr] **SECURITY**: Don't leak private details when sending notifications for private events (Bug #15011). * [mjr] Fix regression in display of clickable event URL property (Bug #14941). --------------------------------------------------------------------------------ChangeLog: * Mon Jul 13 2020 Remi Collet - 4.2.29-1 - update to 4.2.29 * Mon Jul 6 2020 Remi Collet - 4.2.28-1 - update to 4.2.28 * Tue Jun 2 2020 Remi Collet - 4.2.27-5 - requires php(httpd) --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnfupgrade --advisory FEDORA-2020-2f88bad887' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Stay updated on the newest php-horde-kronolith version from Fedora, focusing on notification enhancements and vulnerabilities.. php-horde,kronolith,event notifications,security fixes,Fedora updates. . LinuxSecurity.com Team

Jul 21, 2020 Fedora