[owncloud-devel] ownCloud solutions in *other* projects
cosenal at gmail.com
Fri Jan 16 18:47:45 GMT 2015
So far only two replies :( I am sure the actual reality is better than this!
If you do have some contribution to other projects that fits the
constraints I specified in the first email, please let me know.
I am going to write the blog post this weekend.
On Thu, Jan 8, 2015 at 8:01 PM, Morris Jobke <morris at owncloud.com> wrote:
> I always worked seamlessly with the creator of getID3 and we benefit from
> each other.
> This was derived from
> Am 09.01.2015 um 00:37 schrieb Alessandro Cosentino:
>> Awesome! This is a fantastic start. Thank you, Lukas!
>> On Thu, Jan 8, 2015 at 5:06 PM, Lukas Reschke <lukas at statuscode.ch> wrote:
>>>> In order to celebrate ownCloud's 5th birthday (and the anniversary of
>>>> my 3-year engagement with ownCloud), I have planned to write a blog
>>>> post on how the development of ownCloud has benefited other software
>>>> projects (not necessarily open source projects).
>>> ownCloud’s security team has reported quite some vulnerabilities in well
>>> known and widely used 3rdparty libraries. Most notably:
>>> - ZendFramework: http://framework.zend.com/security/advisory/ZF2014-01
>>> - SabreDAV: http://www.cvedetails.com/cve/CVE-2013-1939/ +
>>> - TCPDF:
>>> - GetID3:
>>> (also used by Wordpress and so on…)
>>> - PHPExcel:
>>> - PHPDocX: http://www.cvedetails.com/cve/CVE-2014-2056/
>>> Also in quite some other components but those are not that widely used as
>>> the ones pointed out above. Also every one of the bugs pointed out above
>>> allowed an attacker to either execute arbitrary PHP Code or read arbitrary
>>> files from the system :-)
>>> - Lukas
>>> Devel mailing list
>>> Devel at owncloud.org
>> Devel mailing list
>> Devel at owncloud.org
> Devel mailing list
> Devel at owncloud.org
More information about the Devel