Author: apo Date: 2017-09-24 21:36:42 +0000 (Sun, 24 Sep 2017) New Revision: 56105
Modified: data/CVE/list Log: otrs2,CVE-2017-14635: Add link to possible fixing commit I have investigated all commits between version 5.0.22 and 5.0.23. This one looks like the fix but I'm not totally sure. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-09-24 21:10:14 UTC (rev 56104) +++ data/CVE/list 2017-09-24 21:36:42 UTC (rev 56105) @@ -211,6 +211,7 @@ NOTE: https://github.com/pts/sam2p/issues/14 CVE-2017-14635 (In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before ...) - otrs2 <unfixed> (bug #876462) + NOTE: Fixing commit? https://github.com/OTRS/otrs/commit/a4093dc404fcbd87b235b31c72913141672f2a85 NOTE: https://www.otrs.com/security-advisory-2017-04-security-update-otrs-versions/ CVE-2017-14650 (A Remote Code Execution vulnerability has been found in the Horde_Image ...) - php-horde-image <unfixed> (bug #876400) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits