[SECURITY] Fedora 22 Update: php-horde-horde-5.2.8-1.fc22

updates at fedoraproject.org updates at fedoraproject.org
Wed Nov 4 22:27:03 UTC 2015

Fedora Update Notification
2015-11-04 18:18:57.364539

Name        : php-horde-horde
Product     : Fedora 22
Version     : 5.2.8
Release     : 1.fc22
URL         : http://www.horde.org/apps/horde
Summary     : Horde Application Framework
Description :
The Horde Application Framework is a flexible, modular, general-purpose web
application framework written in PHP. It provides an extensive array of
components that are targeted at the common problems and tasks involved in
developing modern web applications. It is the basis for a large number of
production-level web applications, notably the Horde Groupware suites. For
more information on Horde or the Horde Groupware suites, visit

Update Information:

**horde 5.2.8**  * [mjr] SECURITY: Protect against CSRF attacks on various admin
pages. * [jan] Don't apply access keys to checkbox and radiobox rows in the
sidebar (Bug #14103). * [jan] Send correct MIME type for non-statically cached
javascript files. * [mjr] Added configuration support for version 2 of
WorldWeatherOnline's API.  **ingo 3.2.7**  * [jan] Update Italian
translation. * [mjr] Add database migration for fixing corrupt rule ordering. *
[mjr] Fix corruption of rule order when reordering rules in certain cases.
**imp 6.2.11**  * [mjr] Request that the contacts API only consider email fields
when detecting duplicates during automatic saving of attendees to the address
book (Bug #14119). * [jan] Don't show 'Create Keys' button if creating PGP keys
is disabled (steffen.hau at rz.uni-mannheim.de, Request #14096). * [mjr] Fix
displaying iTips with certain locale/date_format preference combinations (Bug
#14076).  **passwd 5.0.4**  * [mjr] Fix changing password using Kolab driver
(Mike Gabriel).

  [ 1 ] Bug #1277410 - php-horde-horde: Multiple CSRF vulnerabilities

This update can be installed with the "yum" update program. Use
su -c 'yum update php-horde-horde' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list