Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted php-horde-imp 6.2.27-2+deb11u1 (source) into oldstable-security
Date: Thu, 03 Apr 2025 09:30:25 +0000
Signed by: Sylvain Beucler <beuc@beuc.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 03 Apr 2025 09:03:43 +0200
Source: php-horde-imp
Architecture: source
Version: 6.2.27-2+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Horde Maintainers <team+debian-horde-team@tracker.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Changes:
 php-horde-imp (6.2.27-2+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
 .
   [Bastien Roucariès]
   [Sylvain Beucler]
   * Drop EOL'd ckeditor3, use ckeditor[v4].
   * CVE-2025-30349: XSS that leads to account takeover via a crafted
     text/html e-mail message with an onerror attribute (that may use
     base64-encoded JavaScript code).
   * Update Salsa-CI configuration.
Checksums-Sha1:
 40ae9a27f6bffff3caff8e9b139c637765e9b0c2 2141 php-horde-imp_6.2.27-2+deb11u1.dsc
 5b4bf411a7c7e1608e0d687ec8156d14577553f8 5059418 php-horde-imp_6.2.27.orig.tar.gz
 65ae9ea5aa8790134e56623b8f51a2667028c1bb 9772 php-horde-imp_6.2.27-2+deb11u1.debian.tar.xz
 51cde73f0ebfe7662448ce99519c598128890047 6564 php-horde-imp_6.2.27-2+deb11u1_all.buildinfo
Checksums-Sha256:
 f5ae154f36f996128be4d3fe5855e9b887bcec9638c3180118baf5e66ca2a14b 2141 php-horde-imp_6.2.27-2+deb11u1.dsc
 83a3d7b88dcf3918ca0bc78a0888485bb8b894e47a014364218ae62654b01416 5059418 php-horde-imp_6.2.27.orig.tar.gz
 d247c7eb39df6865f7f47533e2a43ed1ec62fe7dded1453616539bdf726ad47f 9772 php-horde-imp_6.2.27-2+deb11u1.debian.tar.xz
 b3c1e5af5584d2a84090d6f6acffc6a2751e03fdc7e7035565abd42ccaf85135 6564 php-horde-imp_6.2.27-2+deb11u1_all.buildinfo
Files:
 1fcfaa4668500e872431bf233f675a3f 2141 php optional php-horde-imp_6.2.27-2+deb11u1.dsc
 af703adf1aab3a4ef988d86bb50ec3ed 5059418 php optional php-horde-imp_6.2.27.orig.tar.gz
 7021ca72e8d06ac8f0d16f6e68d2b911 9772 php optional php-horde-imp_6.2.27-2+deb11u1.debian.tar.xz
 59b4ba6a19e11130ef5f3e375e71bca4 6564 php optional php-horde-imp_6.2.27-2+deb11u1_all.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE1vEOfV7HXWKqBieIDTl9HeUlXjAFAmfuUC0ACgkQDTl9HeUl
XjBNghAAlXj4jz/rx5gfTZ/Kvor8XwRB7PJhq4Ex4ET2oGDh51Liu5DeOTuDpp8M
03jz0n+3DOoeQUsTYMyA/RwQxXmJtYWDgbo9AtlGtL6QiN5bx6uOamsIOgXF5bDl
ysX0ejqv3lTN8EizRMoxkO7qZT8SbqdMdsL3GBzITwMyu+mTSLBObUdsoCD7Qg95
363NDPz9zy6qbtE6MOIyo2lBp2AOtNsjrpSLnvk8nD/dOiEN76C+GhF9Tp8WsFj1
rJ6+/k7RS2o9OtniqRhCdrSSRF7zeo2KjkIBHM0j9LiW/xJMzJoC/FgV3h1C8LI0
bW4fQTjrCwvJnGDQ7YiRF7X6UxbFGzeGZNxL8tC5jZHQx6lFw5pMZQc7PFaX+HJK
YCqOfuVFtBGhVdAH4O2x+J4uJSDQU5iWfio8opnlgTBIwz04dhezyPCZX+l/zm0R
9xFwDefJwqUDiJ6nnNA56geh9j/xPJq6VrCSlrdEiTXD7LVbYjU29I6FrgblZIWB
kiDqY6XlKlJh/t2p9WoBqz0eaFjOlMGMgiSEBjIkzR6n8TTCy8U+EZKbEQVxp+R9
PxAfYaQLyK7I+IBwNHqYAE5iw+to0OEXwAKKLrH5T1KIWO8bouP1viH46hJSANHQ
XCamEcfLf7VH2ReWlFSPc0DIEfV7Bj0bL6LGtZ2UNNqyF5jdSBo=
=QmBC
-----END PGP SIGNATURE-----

News for package php-horde-imp