otrs2 6.0.19-1 source package in Ubuntu
Changelog
otrs2 (6.0.19-1) unstable; urgency=medium
* New upstream release.
- Fixes OSA-2019-08, also known as CVE-2019-12248: An attacker could send a
malicious email to an OTRS system. If a logged in agent user quotes it,
the email could cause the browser to load external image resources.
- Fixes OSA-2019-09, also known as CVE-2019-12497: In the customer or
external frontend, personal information of agents can be disclosed like
name and mail address in external notes.
* Merge 6.0.16-2 changelog.
-- Patrick Matthäi <email address hidden> Thu, 06 Jun 2019 10:45:46 +0200
Upload details
- Uploaded by:
- Patrick Matthäi
- Uploaded to:
- Sid
- Original maintainer:
- Patrick Matthäi
- Architectures:
- all
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| otrs2_6.0.19-1.dsc | 1.8 KiB | 8cd61b7364f6c630de870f03aecaca7503ffe67e5261f5b3b1d66f1c62cae29e |
| otrs2_6.0.19.orig.tar.bz2 | 24.2 MiB | bdc8d14922ed8a63fa8fa9f13feca52c39fc6c809b3ad57a9133fba8bb7290c1 |
| otrs2_6.0.19-1.debian.tar.xz | 29.2 KiB | 15ebf3c4513aa77df187b53b70fedf121c3858c48a1f7c1ca311ac3ee1e4700b |
Available diffs
- diff from 6.0.18-1 to 6.0.19-1 (754.2 KiB)
No changes file available.
