[SECURITY] Fedora 8 Update: horde-3.1.6-1.fc8

Thu Feb 28 21:41:46 UTC 2008

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-2087
2008-02-28 21:12:48
--------------------------------------------------------------------------------

Name        : horde
Product     : Fedora 8
Version     : 3.1.6
Release     : 1.fc8
URL         : http://www.horde.org/
Summary     : The common Horde Framework for all Horde applications
Description :
The Horde Framework provides a common structure and interface for Horde
applications (such as IMP, a web-based mail program). This RPM is
required for all other Horde module RPMs.

The Horde Project writes web applications in PHP and releases them under
Open Source licenses. For more information (including help with Horde
and its modules) please visit http://www.horde.org/.

READ /usr/share/doc/horde-3.1.6/README.Fedora AFTER INSTALLING FOR
INSTRUCTIONS AND SECURITY!

For additional functionality, also install horde-enhanced

--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #428625 - CVE-2007-6018 horde: input validation vulnerabilities
        https://bugzilla.redhat.com/show_bug.cgi?id=428625
  [ 2 ] Bug #432027 - CVE-2008-0807 turba: insufficient access checks
        https://bugzilla.redhat.com/show_bug.cgi?id=432027
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update horde' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------