[Git][security-tracker-team/security-tracker][master] CVE-2019-{18179,18180}/otrs2: Add links to fixing commits.

Guilhem Moulin (@guilhem) guilhem at debian.org
Wed Aug 16 15:45:16 BST 2023 


Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
659eb0f6 by Guilhem Moulin at 2023-08-16T16:40:38+02:00
CVE-2019-{18179,18180}/otrs2: Add links to fixing commits.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -278555,12 +278555,16 @@ CVE-2019-18180 (Improper Check for filenames with overly long extensions in Post
 	[stretch] - otrs2 <ignored> (Non-free not supported)
 	[jessie] - otrs2 <not-affected> (vulnerable code not present)
 	NOTE: https://community.otrs.com/security-advisory-2019-15-security-update-for-otrs-framework/
+	NOTE: OTRS 6.0: https://github.com/OTRS/otrs/commit/da057277c8620f0885c70090f565f1fa81f2c7e9
+	NOTE: OTRS 6.0: https://github.com/OTRS/otrs/commit/799616eb43f7fb53cae4e04c81e2156baaf02e2b
 CVE-2019-18179 (An issue was discovered in Open Ticket Request System (OTRS) 7.0.x thr ...)
 	{DLA-2053-1}
 	- otrs2 6.0.24-1 (bug #945251)
 	[buster] - otrs2 <ignored> (Non-free not supported)
 	[stretch] - otrs2 <ignored> (Non-free not supported)
 	NOTE: https://community.otrs.com/security-advisory-2019-14-security-update-for-otrs-framework/
+	NOTE: OTRS 6.0: https://github.com/OTRS/otrs/commit/fa6bf8ceed157f10791f9e199058db79b924c351
+	NOTE: OTRS 5.0: https://github.com/OTRS/otrs/commit/696db4d90a1b44ce4ed0c8a4ab9d53bfa3c9836e
 CVE-2019-18178 (Real Time Engineers FreeRTOS+FAT 160919a has a use after free. The fun ...)
 	NOT-FOR-US: FreeRTOS+FAT
 CVE-2019-18177 (In certain Citrix products, information disclosure can be achieved by  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/659eb0f61c533bfa72a2241f27d166c2c2a888d6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/659eb0f61c533bfa72a2241f27d166c2c2a888d6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230816/fea82540/attachment.htm>

More information about the debian-security-tracker-commits mailing list