Register | Log in

php-horde-crypt

Horde Cryptography API

Choose email to subscribe with

general

source: php-horde-crypt (main)
version: 2.7.11-2
maintainer: Horde Maintainers (archive) [DMD]
uploaders: Mathieu Parent [DMD]
arch: all
std-ver: 4.1.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 2.5.0-5
stable: 2.7.8-1
testing: 2.7.11-2
unstable: 2.7.11-2

versioned links

2.5.0-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.11-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

php-horde-crypt

action needed

Debci reports failed tests (log) high

Debci reports test failures (log).

The tests ran in 0h 1m 21s

Last run: 2018-04-25 10:46:49

Previous status: fail

Created: 2018-01-30 Last update: 2018-04-26 02:34

2 security issues in jessie high

There are 2 open security issues in jessie.

2 important issues:

CVE-2017-7413: In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition through 5.2.17, OS Command Injection can occur if the attacker is an authenticated Horde Webmail user, has PGP features enabled in their preferences, and attempts to encrypt an email addressed to a maliciously crafted email address.
CVE-2017-7414: In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition 5.x through 5.2.17, OS Command Injection can occur if the user has PGP features enabled in the user's preferences, and has enabled the "Should PGP signed messages be automatically verified when viewed?" preference. To exploit this vulnerability, an attacker can send a PGP signed email (that is maliciously crafted) to the Horde user, who then must either view or preview it.

Please fix them.

Created: 2017-04-05 Last update: 2018-04-11 14:51

132 new commits since last upload, time to release an update? normal

vcswatch reports that this package seems to have new commits in its VCS. You should consider updating the debian/changelog and uploading this new version into the archive.

Created: 2017-12-03 Last update: 2018-04-06 02:31

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.4 instead of 4.1.3).

Created: 2017-07-02 Last update: 2018-04-16 20:53

news

[2018-04-12] php-horde-crypt 2.7.11-2 MIGRATED to testing (Debian testing watch)
[2018-04-05] Accepted php-horde-crypt 2.7.11-2 (source all) into unstable (Mathieu Parent)
[2017-12-22] php-horde-crypt 2.7.11-1 MIGRATED to testing (Debian testing watch)
[2017-12-16] Accepted php-horde-crypt 2.7.11-1 (source all) into unstable (Mathieu Parent)
[2017-10-02] php-horde-crypt 2.7.10-1 MIGRATED to testing (Debian testing watch)
[2017-09-26] Accepted php-horde-crypt 2.7.10-1 (source all) into unstable (Mathieu Parent)
[2017-07-07] php-horde-crypt 2.7.9-1 MIGRATED to testing (Debian testing watch)
[2017-07-01] Accepted php-horde-crypt 2.7.9-1 (source all) into unstable (Mathieu Parent)
[2017-06-02] php-horde-crypt 2.7.8-1 MIGRATED to testing (Debian testing watch)
[2017-05-28] php-horde-crypt 2.7.5-2 MIGRATED to testing (Debian testing watch)
[2017-05-27] Accepted php-horde-crypt 2.7.8-1 (source all) into unstable (Mathieu Parent)
[2017-05-03] Accepted php-horde-crypt 2.7.5-2 (source all) into unstable (Mathieu Parent)
[2016-12-29] php-horde-crypt 2.7.5-1 MIGRATED to testing (Debian testing watch)
[2016-12-18] Accepted php-horde-crypt 2.7.5-1 (source all) into unstable (Mathieu Parent)
[2016-06-13] php-horde-crypt 2.7.3-2 MIGRATED to testing (Debian testing watch)
[2016-06-08] Accepted php-horde-crypt 2.7.3-2 (source all) into unstable (Mathieu Parent)
[2016-04-11] php-horde-crypt 2.7.3-1 MIGRATED to testing (Debian testing watch)
[2016-04-05] Accepted php-horde-crypt 2.7.3-1 (source all) into unstable (Mathieu Parent)
[2016-04-01] php-horde-crypt 2.7.2-1 MIGRATED to testing (Debian testing watch)
[2016-03-26] Accepted php-horde-crypt 2.7.2-1 (source all) into unstable (Mathieu Parent)
[2016-03-19] php-horde-crypt 2.7.0-2 MIGRATED to testing (Debian testing watch)
[2016-03-13] Accepted php-horde-crypt 2.7.0-2 (source all) into unstable (Mathieu Parent)
[2016-02-09] php-horde-crypt 2.7.0-1 MIGRATED to testing (Debian testing watch)
[2016-02-03] Accepted php-horde-crypt 2.7.0-1 (source all) into unstable (Mathieu Parent)
[2015-10-28] php-horde-crypt 2.6.1-2 MIGRATED to testing (Britney)
[2015-10-23] Accepted php-horde-crypt 2.6.1-2 (source all) into unstable (Mathieu Parent)
[2015-09-22] php-horde-crypt 2.6.1-1 MIGRATED to testing (Britney)
[2015-09-17] Accepted php-horde-crypt 2.6.1-1 (source all) into unstable (Mathieu Parent)
[2015-08-15] php-horde-crypt 2.6.0-1 MIGRATED to testing (Britney)
[2015-08-09] Accepted php-horde-crypt 2.6.0-1 (source all) into unstable (Mathieu Parent)

1
2

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.7.11-1ubuntu1
1 bug
patches for 2.7.11-1ubuntu1

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing