[Git][security-tracker-team/security-tracker][master] Add CVe-2019-12746/otrs2

Sat Jul 13 02:54:08 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
32ae1a17 by Salvatore Bonaccorso at 2019-07-12T21:44:09Z
Add CVe-2019-12746/otrs2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2079,6 +2079,11 @@ CVE-2019-12747 (TYPO3 8.x through 8.7.26 and 9.x through 9.5.7 allows Deserializ
 	NOT-FOR-US: Typo3
 CVE-2019-12746
 	RESERVED
+	- otrs2 6.0.20-1
+	NOTE: https://community.otrs.com/security-advisory-2019-10-security-update-for-otrs-framework/
+	NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/fab16a8e54aaf033f460e5f98c673248f29ea49c
+	NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/cc08cb7df9f6dde05de2f8c6cbd59cd5d0952627
+	NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/7ab33e51a4db9f712e979040f644d0d0c39ff0af
 CVE-2019-12745 (out/out.UsrMgr.php in SeedDMS before 5.1.11 allows Stored Cross-Site S ...)
 	NOT-FOR-US: SeedDMS
 CVE-2019-12744 (SeedDMS before 5.1.11 allows Remote Command Execution (RCE) because of ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32ae1a1711607fb5f568045bec6b1c15029e5240

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32ae1a1711607fb5f568045bec6b1c15029e5240
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190713/d70b0093/attachment-0001.html>
