Debian Package Tracker

From: Gregory Colpart <reg@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted imp4 4.1.3-4etch1 (source all)
Date: Sat, 20 Jun 2009 12:44:22 +0000
Signed by: COLPART Gregory <reg@gcolpart.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sun, 12 Apr 2009 14:55:58 +0200
Source: imp4
Binary: imp4
Architecture: source all
Version: 4.1.3-4etch1
Distribution: stable-security
Urgency: high
Maintainer: Horde Maintainers <pkg-horde-hackers@lists.alioth.debian.org>
Changed-By: Gregory Colpart <reg@debian.org>
Description: 
 imp4       - webmail component for horde framework
Closes: 500553 513266
Changes: 
 imp4 (4.1.3-4etch1) stable-security; urgency=high
 .
   * Backport patches from Horde upstream to fix unescaped output in some
     scripts ({pgp,smime}.pgp, templates/{pgp,smime}/passphrase.inc and
     message.php). (Closes: #513266)
   * Cherry-pick security patch from debian-sid branch. This patch was a
     backport from Horde CVS to escape output on test.php file. This
     fix could be considered as a minor XSS issue, see CVE-2008-4182.
     (Closes: #500553)
Checksums-Sha1: 
 8018abe2790bf4cb787190b1e05dd0ef9cebcd0b 1059 imp4_4.1.3-4etch1.dsc
 463e995e8faf96001827066046d32eac31514b4a 4178089 imp4_4.1.3.orig.tar.gz
 29671f7dc07bcb8641e314c83fddf907f1321a08 10716 imp4_4.1.3-4etch1.diff.gz
 331f8f1c63929c4ad0b31ed5d4f0f052b4b1d8b1 4167730 imp4_4.1.3-4etch1_all.deb
Checksums-Sha256: 
 a6f798709a232eefdec8714f2ab01f5e4e48ff59daf512f03a9670679af97b43 1059 imp4_4.1.3-4etch1.dsc
 e1c9f9230243dc4bde7fc6c4f6279c24ba354b26f8a10ffe4aa771817ce784dc 4178089 imp4_4.1.3.orig.tar.gz
 79d30ecb0e98af36697042ca4cbb2da4f9d4505863b725aa3f368a864b39069b 10716 imp4_4.1.3-4etch1.diff.gz
 fb3f8f81574d8f6f3ebab442d93ec7b4a9c3bb72c1d5dd49064d292aba7a5277 4167730 imp4_4.1.3-4etch1_all.deb
Files: 
 2502fe9fc8aceeb3bd3492b739a6c53a 1059 web optional imp4_4.1.3-4etch1.dsc
 91fb63a44805bdff178c39c9bd1c73c5 4178089 web optional imp4_4.1.3.orig.tar.gz
 156684bbc1de0c24a44ccef4b979d10a 10716 web optional imp4_4.1.3-4etch1.diff.gz
 fc8bbcc5348d4548bf9c707bbad8aec7 4167730 web optional imp4_4.1.3-4etch1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAknjSvkACgkQMhdcDcECeg4qkwCfdnOckol09vvIcLLOhH+05MBj
IxEAn0lzgFIMGrhip+jrgdfpznUCObv0
=DyJH
-----END PGP SIGNATURE-----


Accepted:
imp4_4.1.3-4etch1.diff.gz
  to pool/main/i/imp4/imp4_4.1.3-4etch1.diff.gz
imp4_4.1.3-4etch1.dsc
  to pool/main/i/imp4/imp4_4.1.3-4etch1.dsc
imp4_4.1.3-4etch1_all.deb
  to pool/main/i/imp4/imp4_4.1.3-4etch1_all.deb

News for package imp4