Ubuntu
otrs2 package

otrs2 6.0.32-5 source package in Ubuntu

Changelog

otrs2 (6.0.32-5) unstable; urgency=high

  * Add upstream patch 14-ZSA-2021-03: There is a denial of service issue, when
    a mail with a special crafted url is received. This can lead to a maxout of
    the available server-CPU(s) and can reduce the quality of service or even
    bring the system to a halt. This addresses CVE-2021-21439.
    Closes: #989992
  * Add upstream patch 15-ZSA-2021-06: There is a XSS vulnerability in the
    ticket overviews, which can used to extract all kind of information just
    by having a e-mail shown in an overview. An attacker can send a prepared
    e-mail to the system to trigger the attack. This addresses CVE-2021-21441.
    Closes: #989992

 -- Patrick Matthäi <email address hidden>  Fri, 18 Jun 2021 15:10:23 +0200

Upload details

Uploaded by:
Patrick Matthäi
Uploaded to:
Sid
Original maintainer:
Patrick Matthäi
Architectures:
all
Section:
misc
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Impish: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
otrs2_6.0.32-5.dsc 1.8 KiB 1aca9454ae03873cf17fca1de73370ebc380d3e39de6ebe5d515cdc2df446818
otrs2_6.0.32.orig.tar.gz 41.1 MiB c0db57d08038fa0f74000eb18c6995fbb4a74c4e0c97fc2f349f1bbb4c4b61da
otrs2_6.0.32-5.debian.tar.xz 38.1 KiB d71efc24c71134799cc658439d7a306df7464d08750e448083b226dec0f52351

Available diffs

No changes file available.

Binary packages built by this source

otrs: No summary available for otrs in ubuntu impish.

No description available for otrs in ubuntu impish.

otrs2: No summary available for otrs2 in ubuntu impish.

No description available for otrs2 in ubuntu impish.