eGroupware prior to 1.8.006.20140217 is vulnerable to remote file deletion and possible remote code execution due to user input being passed to PHP’s unserialize() method (CVE-2014-2027).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | egroupware | < 1.8.006.20140217-1 | egroupware-1.8.006.20140217-1.mga3 |
Mageia | 4 | noarch | egroupware | < 1.8.006.20140217-1 | egroupware-1.8.006.20140217-1.mga4 |