Hi Gregory, * Gregory Colpart <[EMAIL PROTECTED]> [2008-01-20 03:12]: > On Sun, Jan 20, 2008 at 01:30:37AM +0100, Nico Golde wrote: > > are you also going to fix imp4? > > CVE-2007-6018 doesn't affect directly package imp4. > Security problems are in 'lib/Horde/Text/Filter/xss.php' > file which is only part of horde3 package. For more information, > you can see my patch for horde3/stable-security: > http://arch.debian.org/cgi-bin/archzoom.cgi/[EMAIL > PROTECTED]/horde--etch--3--patch-4/lib/Horde/Text/Filter/xss.php.diff?diff
Thanks alot. I marked this in the security tracker. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpkhff7GgKug.pgp
Description: PGP signature
