Two vulnerabilities were fixed in radicale, a CardDAV/CalDAV server.
.\*', he can bypass read/write limitations imposed by regex-based rules, including the built-in rules
owner_write’ (read for everybody,For the oldstable distribution (wheezy), these problems have been fixed
in version 0.7-1.1+deb7u1.
For the stable distribution (jessie), these problems have been fixed in
version 0.9-1+deb8u1.
For the testing distribution (stretch), these problems have been fixed
in version 1.1.1-1.
For the unstable distribution (sid), these problems have been fixed in
version 1.1.1-1.
We recommend that you upgrade your radicale packages.