request-tracker4 4.4.1-3+deb9u2build0.17.04.1 source package in Ubuntu
Changelog
request-tracker4 (4.4.1-3+deb9u2build0.17.04.1) zesty-security; urgency=medium
* fake sync from Debian
request-tracker4 (4.4.1-3+deb9u2) stretch; urgency=medium
* Handle configuration permissions correctly following
RT_SiteConfig.d changes (Closes: #862426)
request-tracker4 (4.4.1-3+deb9u1) stretch-security; urgency=high
* Fix multiple security issues:
- [CVE-2017-5943] CSRF verification token information leak
- [CVE-2016-6127] XSS in file uploads
- [CVE-2017-5361] Timing side-channel vulnerability in password
verification
- [CVE-2017-5944] Remote code execution in dashboard interface
- Add check for incorrect RestrictLoginReferrer configuration setting
* Work around a DoS vulnerability in Email::Address (CVE-2015-7686)
-- Marc Deslauriers <email address hidden> Tue, 03 Oct 2017 09:39:53 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Zesty
- Original maintainer:
- Debian Request Tracker Group
- Architectures:
- all
- Section:
- misc
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| request-tracker4_4.4.1.orig-third-party-source.tar.gz | 1.1 MiB | 5cdc9d979a44ac53aa67e2ddecc17477dbe53fa8be8b4147b5f9a3b83cabdaf8 |
| request-tracker4_4.4.1.orig.tar.gz | 8.6 MiB | f87329911020e01b39948070aec2bd7abf0c81641f0cf2f25e01c690a19f24f5 |
| request-tracker4_4.4.1-3+deb9u2build0.17.04.1.debian.tar.xz | 81.8 KiB | e941046174d49e4b3103201363db0c625f661bde1fb9a752092867de85fc3f78 |
| request-tracker4_4.4.1-3+deb9u2build0.17.04.1.dsc | 5.4 KiB | 4666be75253b7bfde904ebce6a7e712b61c31680cabdebc9e184d4655164a39c |
Available diffs
Binary packages built by this source
- request-tracker4: No summary available for request-tracker4 in ubuntu zesty.
No description available for request-tracker4 in ubuntu zesty.
- rt4-apache2: No summary available for rt4-apache2 in ubuntu zesty.
No description available for rt4-apache2 in ubuntu zesty.
- rt4-clients: No summary available for rt4-clients in ubuntu zesty.
No description available for rt4-clients in ubuntu zesty.
- rt4-db-mysql: No summary available for rt4-db-mysql in ubuntu zesty.
No description available for rt4-db-mysql in ubuntu zesty.
- rt4-db-postgresql: No summary available for rt4-db-postgresql in ubuntu zesty.
No description available for rt4-db-postgresql in ubuntu zesty.
- rt4-db-sqlite: No summary available for rt4-db-sqlite in ubuntu zesty.
No description available for rt4-db-sqlite in ubuntu zesty.
- rt4-doc-html: No summary available for rt4-doc-html in ubuntu zesty.
No description available for rt4-doc-html in ubuntu zesty.
- rt4-fcgi: No summary available for rt4-fcgi in ubuntu zesty.
No description available for rt4-fcgi in ubuntu zesty.
- rt4-standalone: No summary available for rt4-standalone in ubuntu zesty.
No description available for rt4-standalone in ubuntu zesty.
