security advisoryupdateFedora
**kronolith 4.2.22** * [jan] SECURITY: Fix open redirects. * [mjr] Prevent broken iCalendar files from causing fatal errors (Bug #14672). * [jan] Work around calendar servers advertising as CalDAV-capable, but ignoring CalDAV requests (Bug #14662). * [jan] Fix displaying yesterday's event in Prior Events portal block (This email address is being protected from spambots. You need JavaScript enabled to view it., Bug #14638).. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-ceb60ebf8f 2017-08-10 15:18:13.065836 --------------------------------------------------------------------------------Name : php-horde-kronolith Product : Fedora 26 Version : 4.2.22 Release : 1.fc26 URL : https://www.horde.org/apps/kronolith Summary : A web based calendar Description : Kronolith is the Horde calendar application. It provides web-based calendars backed by a SQL database or a Kolab server. Supported features include Ajax and mobile interfaces, shared calendars, remote calendars, invitation management (iCalendar/iTip), free/busy management, resource management, alarms, recurring events, and a sophisticated day/week view which handles arbitrary numbers of overlapping events. --------------------------------------------------------------------------------Update Information: **kronolith 4.2.22** * [jan] SECURITY: Fix open redirects. * [mjr] Prevent broken iCalendar files from causing fatal errors (Bug #14672). * [jan] Work around calendar servers advertising as CalDAV-capable, but ignoring CalDAV requests (Bug #14662). * [jan] Fix displaying yesterday's event in Prior Events portal block (This email address is being protected from spambots. You need JavaScript enabled to view it., Bug #14638). --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade php-horde-kronolith' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with theFedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Kronolith version 4.2.22 addresses vulnerabilities concerning open redirects and enhances the reliability of the calendar application on Fedora systems.. php-horde-kronolith update,Fedora security update,web-based calendar,open redirect fix. . Severity: Important. LinuxSecurity.com Team
Aug 10, 2017
•Important
Fedora
Refine advisories
