[Git][security-tracker-team/security-tracker][master] Track fixing version for otrs2 via buster
Salvatore Bonaccorso
carnil at debian.org
Sun May 5 14:29:37 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ba7f00eb by Salvatore Bonaccorso at 2019-05-05T13:27:38Z
Track fixing version for otrs2 via buster
Note the upload cannot be done via unstable as the new upstream version
did contain many changes which would be not be possible at this point of
the release to gate via unstable to testing.
Maintainer filled an unblock request as per [1], which was acked by the
release team already.
Assuming maintainer will perform now the upload an remove the moreinfo
tag, and the version will land in buster, already start tracking the
version.
[1] https://bugs.debian.org/928223
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4069,6 +4069,7 @@ CVE-2019-10068 (An issue was discovered in Kentico before 12.0.15. Due to a fail
CVE-2019-10067 [OSA-2019-05]
RESERVED
- otrs2 6.0.18-1
+ [buster] - otrs2 6.0.16-2
[jessie] - otrs2 <not-affected> (vulnerable code is not present)
NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/8a489236336ddc82e745c27abb32dfa1ceefb0f4
NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/67158d8b08309859572c795982ecc7c52484ab0e
@@ -4076,6 +4077,7 @@ CVE-2019-10067 [OSA-2019-05]
CVE-2019-10066 [OSA-2019-06]
RESERVED
- otrs2 6.0.18-1
+ [buster] - otrs2 6.0.16-2
[jessie] - otrs2 <not-affected> (vulnerable code is not present)
NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/b99cad21f2dd1c2d52299424a589b0b2f20d7ba8
NOTE: https://community.otrs.com/security-advisory-2019-06-security-update-for-otrs-framework/
@@ -4507,6 +4509,7 @@ CVE-2019-9892 [OSA-2019-04]
RESERVED
{DLA-1774-1}
- otrs2 6.0.18-1
+ [buster] - otrs2 6.0.16-2
NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/3617488c6c28e06203e4127c7b031140f775a685
NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/c3b9342a85c6f2c9382e074ad9cc440ce80a6f34
NOTE: https://community.otrs.com/security-advisory-2019-04-security-update-for-otrs-framework/
@@ -5581,7 +5584,7 @@ CVE-2019-9752 (An issue was discovered in Open Ticket Request System (OTRS) 5.x
NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/d4e3dfbaa054762b29df54705aa412685dd37e15
CVE-2019-9751 (An issue was discovered in Open Ticket Request System (OTRS) 6.x befor ...)
- otrs2 6.0.17-1
- [buster] - otrs2 <no-dsa> (Non-free not supported)
+ [buster] - otrs2 6.0.16-2
[stretch] - otrs2 <no-dsa> (Non-free not supported)
[jessie] - otrs2 <not-affected> (Vulnerable code not present)
NOTE: https://community.otrs.com/security-advisory-2019-02-security-update-for-otrs-framework
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba7f00eba4beda8498ca82f45deb3a78b94c0f4d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba7f00eba4beda8498ca82f45deb3a78b94c0f4d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190505/496c0e79/attachment.html>
More information about the debian-security-tracker-commits
mailing list