[Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-21441
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 17 19:08:29 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
11547d96 by Salvatore Bonaccorso at 2023-08-17T20:07:57+02:00
Update information for CVE-2021-21441
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -189533,10 +189533,9 @@ CVE-2021-21441 (There is a XSS vulnerability in the ticket overview screens. It'
- otrs2 6.0.32-5 (bug #989992)
[buster] - otrs2 <no-dsa> (Non-free not supported)
[stretch] - otrs2 <no-dsa> (Non-free not supported)
+ - znuny <not-affected> (Fixed before initial upload to Debian)
NOTE: https://otrs.com/release-notes/otrs-security-advisory-2021-11/
NOTE: Fixed by: https://github.com/znuny/Znuny/commit/48b8d2bc85280d702bd0d21783f5d31e2fa5fa51 (znuny 6.0.34)
- NOTE: Reference is for OTRS, no reference for znuny yet (in bullseye
- NOTE: src:otrs2 is the znuny fork)
CVE-2021-21440 (Generated Support Bundles contains private S/MIME and PGP keys if cont ...)
- otrs2 6.0.32-6 (bug #991593)
[buster] - otrs2 <no-dsa> (Non-free not supported)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11547d967b5bc1196bb9aea903d00bfecf28a613
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11547d967b5bc1196bb9aea903d00bfecf28a613
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230817/f4bd5dc6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list