|Category:||Debian Local Security Checks|
|Title:||Debian LTS Advisory ([SECURITY] [DLA 1398-1] php-horde-crypt security update)|
|Summary:||It was discovered that in Horde-Crypt, a cryptographic library and part;of the PHP Horde framework, a command injection was possible when a;Horde user used the PGP features to view an encrypted email.|
It was discovered that in Horde-Crypt, a cryptographic library and part
of the PHP Horde framework, a command injection was possible when a
Horde user used the PGP features to view an encrypted email.
The Horde_Crypt package class provides an API for various cryptographic
php-horde-crypt on Debian Linux
For Debian 8 'Jessie', these problems have been fixed in version
We recommend that you upgrade your php-horde-crypt packages.
Common Vulnerability Exposure (CVE) ID: CVE-2017-7413|
Common Vulnerability Exposure (CVE) ID: CVE-2017-7414
|Copyright||Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net|
|This is only one of 71685 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.