--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2016-bf8d17758f
2016-09-21 21:32:42.175813
--------------------------------------------------------------------------------
Name : php-horde-horde
Product : Fedora 24
Version : 5.2.12
Release : 1.fc24
URL :
http://www.horde.org/apps/horde
Summary : Horde Application Framework
Description :
The Horde Application Framework is a flexible, modular, general-purpose web
application framework written in PHP. It provides an extensive array of
components that are targeted at the common problems and tasks involved in
developing modern web applications. It is the basis for a large number of
production-level web applications, notably the Horde Groupware suites. For
more information on Horde or the Horde Groupware suites, visit
http://www.horde.org.
--------------------------------------------------------------------------------
Update Information:
**horde 5.2.12** * [jan] SECURITY: Add CSRF protection tokens to portal layout
forms (Reported by Florian K��llich). * [jan] Fix double loading of hooks.php.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1375484 - php-horde: Missing CSRF protection in configuration form and portal
layout forms
https://bugzilla.redhat.com/show_bug.cgi?id=1375484
[ 2 ] Bug #1375478 - php-horde: Missing CSRF protection in portal layout forms
https://bugzilla.redhat.com/show_bug.cgi?id=1375478
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update php-horde-horde' at the command line.
For more information, refer to "Managing Software with yum",
available at
https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------