[Git][security-tracker-team/security-tracker][master] 2 commits: Add upstream otrs2 security advisory references for OSA-2019-{04,05,06}

Salvatore Bonaccorso carnil at debian.org
Mon Apr 29 06:21:31 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c552b693 by Salvatore Bonaccorso at 2019-04-29T05:18:33Z
Add upstream otrs2 security advisory references for OSA-2019-{04,05,06}

- - - - -
12421b08 by Salvatore Bonaccorso at 2019-04-29T05:20:55Z
Reference upstream commits for CVE-2019-9892, CVE-2019-10066 and CVE-2019-10067

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3560,9 +3560,14 @@ CVE-2019-10068 (An issue was discovered in Kentico before 12.0.15. Due to a fail
 CVE-2019-10067 [OSA-2019-05]
 	RESERVED
 	- otrs2 6.0.18-1
+	NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/8a489236336ddc82e745c27abb32dfa1ceefb0f4
+	NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/67158d8b08309859572c795982ecc7c52484ab0e
+	NOTE: https://community.otrs.com/security-advisory-2019-05-security-update-for-otrs-framework/
 CVE-2019-10066 [OSA-2019-06]
 	RESERVED
 	- otrs2 6.0.18-1
+	NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/b99cad21f2dd1c2d52299424a589b0b2f20d7ba8
+	NOTE: https://community.otrs.com/security-advisory-2019-06-security-update-for-otrs-framework/
 CVE-2019-10065
 	RESERVED
 CVE-2019-10064
@@ -3989,6 +3994,9 @@ CVE-2019-9894 (A remotely triggerable memory overwrite in RSA key exchange in Pu
 CVE-2019-9892 [OSA-2019-04]
 	RESERVED
 	- otrs2 6.0.18-1
+	NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/3617488c6c28e06203e4127c7b031140f775a685
+	NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/c3b9342a85c6f2c9382e074ad9cc440ce80a6f34
+	NOTE: https://community.otrs.com/security-advisory-2019-04-security-update-for-otrs-framework/
 CVE-2019-9891
 	RESERVED
 CVE-2019-9890 (An issue was discovered in GitLab Community and Enterprise Edition 10. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d479f9c394f0b516beb2f62b0b28ac7cfce2423b...12421b08ccdb8213ef2966acb71cb0690de1bbe5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d479f9c394f0b516beb2f62b0b28ac7cfce2423b...12421b08ccdb8213ef2966acb71cb0690de1bbe5
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190429/76d8ec25/attachment.html>

More information about the debian-security-tracker-commits mailing list