Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted php-horde-trean 1.1.9-3+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
Date: Sat, 25 Apr 2020 15:02:14 +0000
Signed by: Roberto C. Sanchez <roberto@familiasanchez.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 10 Apr 2020 20:31:30 -0400
Source: php-horde-trean
Architecture: source
Version: 1.1.9-3+deb10u1
Distribution: buster
Urgency: high
Maintainer: Horde Maintainers <team+debian-horde-team@tracker.debian.org>
Changed-By: Roberto C. Sanchez <roberto@debian.org>
Closes: 955019
Changes:
 php-horde-trean (1.1.9-3+deb10u1) buster; urgency=high
 .
   * Fix CVE-2020-8865:
     The Horde Application Framework contained a directory traversal
     vulnerability resulting from insufficient input sanitization. An
     authenticated remote attacker could use this flaw to execute code in the
     context of the web server user. (Closes: #955019)
Checksums-Sha1:
 96594088177b09e019395932691bb26868efb108 2044 php-horde-trean_1.1.9-3+deb10u1.dsc
 b6e07bfd1b2a706fb69f3d6c39e0b0036243a315 663125 php-horde-trean_1.1.9.orig.tar.gz
 39597d13a50e4e6b4ab59211d98d06bcad8d48fd 3860 php-horde-trean_1.1.9-3+deb10u1.debian.tar.xz
 50f818af7c456a469e88db587d54ac067a543cb7 5882 php-horde-trean_1.1.9-3+deb10u1_amd64.buildinfo
Checksums-Sha256:
 6cd58713d0f99589f37217d31e3f86d7134ac8bbc0113d7921fc5af6cbb42bf3 2044 php-horde-trean_1.1.9-3+deb10u1.dsc
 52b0b5f5f0249b0f60428f442cdd8f6e7f8b64661ca898697d631be54b80f860 663125 php-horde-trean_1.1.9.orig.tar.gz
 f11593710485b848b872df905d634d3f0af760558481751db02aa776e6a19063 3860 php-horde-trean_1.1.9-3+deb10u1.debian.tar.xz
 ce5f8fe73dad46bd52de8ec34e5476080772d8a826928715daa4239ba707dfd7 5882 php-horde-trean_1.1.9-3+deb10u1_amd64.buildinfo
Files:
 8683ba7221b8d22dfca4e2c3d1e76fc0 2044 php optional php-horde-trean_1.1.9-3+deb10u1.dsc
 8270bfa071136801b41f6b2cb5c9d508 663125 php optional php-horde-trean_1.1.9.orig.tar.gz
 455ece5d01ef4b1908e29a0694a8ad65 3860 php optional php-horde-trean_1.1.9-3+deb10u1.debian.tar.xz
 9e2962d393ce2f86aae108904cc11660 5882 php optional php-horde-trean_1.1.9-3+deb10u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEz9ERzDttUsU/BH8iLNd4Xt2nsg8FAl6TE4UACgkQLNd4Xt2n
sg9zqA//UWjJSB3+hWi9WCDR5hEEwyH2siZpJDLxU/uh44MpXJFvtywv7fjHHFgT
Tzd2CQyDWPIhRiwnmd3XaIGsg9N0xtEIFsmIRf2yVQlPS7J3hbDtS9blzDWqwdc8
dm7u+n3cZ/cFxVTUKXdyBT7OYkmfpez96rgOP5v9phmTo1rEqkTHeOYJST3NjsBP
xL9dY6Ge5ktTMA5CBqmvJDl2+ILLHfmJ8Clb5ZQ8fJ1C7vL/xRSwO9owHwRP3MDy
CdoKOZhECaLssL3/CkYq3eEXF8q4FO5O4kG+cJN5PyffjnaegaBe6VkAY5gPelAy
a6e+vxJvFs6cFyeXInAayHLBKdCroEpSRN8mzROCi6mc4zK6HYr3cpQZPnXKi1MX
lp1+5H+i/i7dhhpBV7RWsm1nP2ccYpnmIwKSP0KhJGxV8p80jWNsXI9CqSxWybdf
S6us8pRB7od99Lk8pRmb+63o5LdvYKpj6UP6wKtfbvoG9YS6sz6vdqy1EesOSSqJ
9TjcXLOtqZjECuRqvwTwWlppE01pmRSI82hbIbMKxmiDbczl5gQd+BBQSaWa7pHG
HSWLjbWktVH5DRzsLFxx7qE+G0WzMoXOG40jq6sKAW68B1J2keE+cvH7gu++V4Z+
TleUQXC3fKtcn2CLWgrTaY4V4urbYoA52Sl4BdIzk6lC2B3Jykk=
=GLjg
-----END PGP SIGNATURE-----

News for package php-horde-trean