Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
11547d96 by Salvatore Bonaccorso at 2023-08-17T20:07:57+02:00
Update information for CVE-2021-21441
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -189533,10 +189533,9 @@ CVE-2021-21441 (There is a XSS vulnerability in the
ticket overview screens. It'
- otrs2 6.0.32-5 (bug #989992)
[buster] - otrs2 <no-dsa> (Non-free not supported)
[stretch] - otrs2 <no-dsa> (Non-free not supported)
+ - znuny <not-affected> (Fixed before initial upload to Debian)
NOTE: https://otrs.com/release-notes/otrs-security-advisory-2021-11/
NOTE: Fixed by:
https://github.com/znuny/Znuny/commit/48b8d2bc85280d702bd0d21783f5d31e2fa5fa51
(znuny 6.0.34)
- NOTE: Reference is for OTRS, no reference for znuny yet (in bullseye
- NOTE: src:otrs2 is the znuny fork)
CVE-2021-21440 (Generated Support Bundles contains private S/MIME and PGP keys
if cont ...)
- otrs2 6.0.32-6 (bug #991593)
[buster] - otrs2 <no-dsa> (Non-free not supported)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11547d967b5bc1196bb9aea903d00bfecf28a613
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11547d967b5bc1196bb9aea903d00bfecf28a613
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
