[Secure-testing-commits] r45944 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 3 19:13:50 UTC 2016
Author: carnil
Date: 2016-11-03 19:13:50 +0000 (Thu, 03 Nov 2016)
New Revision: 45944
Modified:
data/CVE/list
Log:
Add bug reference for otrs2, CVE-2016-9139, #843091
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-03 18:24:50 UTC (rev 45943)
+++ data/CVE/list 2016-11-03 19:13:50 UTC (rev 45944)
@@ -77,7 +77,7 @@
TODO: check
CVE-2016-9139 [An attacker could trick an authenticated agent or customer into opening a malicious attachment which could lead to the execution of JavaScript in OTRS context]
RESERVED
- - otrs2 <unfixed>
+ - otrs2 <unfixed> (bug #843091)
NOTE: https://www.otrs.com/security-advisory-2016-02-security-update-otrs/
NOTE: http://www.openwall.com/lists/oss-security/2016/11/01/5
NOTE: upstream fix likely https://github.com/OTRS/otrs/commit/6578a8bcf82529461302291ab3fcb500363b005a
More information about the Secure-testing-commits
mailing list