[Secure-testing-commits] r56105 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Sep 24 21:36:42 UTC 2017
Author: apo
Date: 2017-09-24 21:36:42 +0000 (Sun, 24 Sep 2017)
New Revision: 56105
Modified:
data/CVE/list
Log:
otrs2,CVE-2017-14635: Add link to possible fixing commit
I have investigated all commits between version 5.0.22 and 5.0.23. This one
looks like the fix but I'm not totally sure.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-24 21:10:14 UTC (rev 56104)
+++ data/CVE/list 2017-09-24 21:36:42 UTC (rev 56105)
@@ -211,6 +211,7 @@
NOTE: https://github.com/pts/sam2p/issues/14
CVE-2017-14635 (In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before ...)
- otrs2 <unfixed> (bug #876462)
+ NOTE: Fixing commit? https://github.com/OTRS/otrs/commit/a4093dc404fcbd87b235b31c72913141672f2a85
NOTE: https://www.otrs.com/security-advisory-2017-04-security-update-otrs-versions/
CVE-2017-14650 (A Remote Code Execution vulnerability has been found in the Horde_Image ...)
- php-horde-image <unfixed> (bug #876400)
More information about the Secure-testing-commits
mailing list