[Secure-testing-commits] r45944 - data/CVE

Salvatore Bonaccorso Thu, 03 Nov 2016 12:14:27 -0700

Author: carnil
Date: 2016-11-03 19:13:50 +0000 (Thu, 03 Nov 2016)
New Revision: 45944


Modified:
   data/CVE/list
Log:
Add bug reference for otrs2, CVE-2016-9139, #843091

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-11-03 18:24:50 UTC (rev 45943)
+++ data/CVE/list       2016-11-03 19:13:50 UTC (rev 45944)
@@ -77,7 +77,7 @@
        TODO: check
 CVE-2016-9139 [An attacker could trick an authenticated agent or customer into 
opening a malicious attachment which could lead to the execution of JavaScript 
in OTRS context]
        RESERVED
-       - otrs2 <unfixed>
+       - otrs2 <unfixed> (bug #843091)
        NOTE: 
https://www.otrs.com/security-advisory-2016-02-security-update-otrs/
        NOTE: http://www.openwall.com/lists/oss-security/2016/11/01/5
        NOTE: upstream fix likely 
https://github.com/OTRS/otrs/commit/6578a8bcf82529461302291ab3fcb500363b005a


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r45944 - data/CVE

Reply via email to