clone 507947 -1 retitle -1 remote code execution via preg_replace in html2text.php tag -1 patch security thanks
Hi Francois, [...] > * Replace html2text with a GPL alternative (closes: #507947) I'm, so sorry, completely forgot to tell you about the recent issue we discovered in roundcube's html2text which could lead to code execution attacks. The patch for that other issue can be found at [1]. Sorry again for not notifying you before. [1]http://trac.roundcube.net/changeset/2148 Regards, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net Jay London - "I was going to buy a book on hair loss, but the pages kept falling out." -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
