[Secure-testing-commits] r56291 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sat Sep 30 18:46:35 UTC 2017
Author: apo
Date: 2017-09-30 18:46:35 +0000 (Sat, 30 Sep 2017)
New Revision: 56291
Modified:
data/CVE/list
Log:
otrs2: CVE-2014-1695,CVE-2014-2553,CVE-2014-2554 remove no-dsa flag
Will be fixed with 3.3.18-1~deb7u1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-30 18:43:51 UTC (rev 56290)
+++ data/CVE/list 2017-09-30 18:46:35 UTC (rev 56291)
@@ -117396,12 +117396,10 @@
RESERVED
CVE-2014-2554 (OTRS 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before 3.3.6 ...)
- otrs2 3.3.6-1
- [wheezy] - otrs2 <no-dsa> (Minor issue)
[squeeze] - otrs2 <no-dsa> (Minor issue)
NOTE: https://www.otrs.com/security-advisory-2014-05-clickjacking-issue/
CVE-2014-2553 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
- otrs2 3.3.6-1
- [wheezy] - otrs2 <no-dsa> (Minor issue)
[squeeze] - otrs2 <no-dsa> (Minor issue)
CVE-2014-2552
RESERVED
@@ -119921,7 +119919,6 @@
NOT-FOR-US: Siemens SIMATIC WinCC OA
CVE-2014-1695 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
- otrs2 3.3.5-1
- [wheezy] - otrs2 <no-dsa> (Minor issue)
[squeeze] - otrs2 <no-dsa> (Minor issue)
NOTE: https://www.otrs.com/security-advisory-2014-03-xss-issue/
CVE-2013-7323 (python-gnupg before 0.3.5 allows context-dependent attackers to ...)
More information about the Secure-testing-commits
mailing list