Comment 1 for bug 212211

This bug was fixed in the package egroupware - 1.2.107-2.dfsg-2ubuntu1

---------------
egroupware (1.2.107-2.dfsg-2ubuntu1) hardy; urgency=low

  * SECURITY UPDATE: cross-site scripting via crafted URL protocols.
    (LP: #212211)
    - debian/patches/CVE-2008-1502.dpatch: Properly sanitise protocols in
      URLs. Patch from upstream.
    - References:
      + CVE-2008-1502
  * Modify Maintainer value to match the DebianMaintainerField
    specification.

 -- William Grant <email address hidden> Sat, 05 Apr 2008 22:47:05 +1100