Accepted otrs2 3.1.7+dfsg1-8+deb7u3 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 09 Jul 2013 11:13:00 +0200
Source: otrs2
Binary: otrs2 otrs
Architecture: source all
Version: 3.1.7+dfsg1-8+deb7u3
Distribution: stable-security
Urgency: high
Maintainer: Patrick Matthäi <pmatthaei@debian.org>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Description:
otrs - Open Ticket Request System (OTRS 3)
otrs2 - Open Ticket Request System
Changes:
otrs2 (3.1.7+dfsg1-8+deb7u3) stable-security; urgency=high
.
* Add patch 34-CVE-2013-4717 which fixes CVE-2013-4717, also known as
OSA-2013-05:
An attacker with a valid agent login could manipulate URLs leading to SQL
injection.
Checksums-Sha1:
61437afb291bf532f59f233080c938838645a196 1831 otrs2_3.1.7+dfsg1-8+deb7u3.dsc
cccd35beb84429c738bec4e00627f6cd441a7b6b 52220 otrs2_3.1.7+dfsg1-8+deb7u3.debian.tar.gz
c90d9af7fa17f60707726e805f02be606368c533 9762842 otrs2_3.1.7+dfsg1-8+deb7u3_all.deb
301c3c6ffdee10e284d012e5ae4e3a7d4fc7507d 136846 otrs_3.1.7+dfsg1-8+deb7u3_all.deb
Checksums-Sha256:
4093755a8afab39e822ad6060ba07d0dbce8b8f239d0a04fefd680c2515de1b5 1831 otrs2_3.1.7+dfsg1-8+deb7u3.dsc
1a804f113cd4aaddb1d424dd68d3ab93fd9496bf6e2cd65ed6bd1444d7d38c48 52220 otrs2_3.1.7+dfsg1-8+deb7u3.debian.tar.gz
3122f4d2261d392cb934900d6558ae6c2b6f79a5cd0026e0bc6eb793eef90608 9762842 otrs2_3.1.7+dfsg1-8+deb7u3_all.deb
7dc3053c1e9b2734fac9dd18935bd48a98ee5cbd9b671a32598ec277d436d025 136846 otrs_3.1.7+dfsg1-8+deb7u3_all.deb
Files:
a40e6e44b4ffa564411e6de1a5803aec 1831 web optional otrs2_3.1.7+dfsg1-8+deb7u3.dsc
49d4c4a815b3851d7e94db03491c183c 52220 web optional otrs2_3.1.7+dfsg1-8+deb7u3.debian.tar.gz
1435c8933d455f09caff97bb0725223c 9762842 web optional otrs2_3.1.7+dfsg1-8+deb7u3_all.deb
8d3a090a541733a0cc5a134d3b83ff5d 136846 web optional otrs_3.1.7+dfsg1-8+deb7u3_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQIcBAEBCAAGBQJR5+AUAAoJEBLZsEqQy9jk74UP/01gqlNP1CSWYcwSTdsO9adI
i9b273vzSYXvFUMgQhVjhmQLDu55PYs+md9bR8z0gB8BUIRgwhUdcn7e8QkCog3x
HgQ7shf5aZUu0Afw97a01+YmV7N+j4EaJ1FajMmtthjDl4DgatL6JD/uIqF/Kpby
aluFJMdOS6dnChz8O/wQnxo0F8Oruce6zV6NrntovNZzWw2lBo/g9VvFnKVJ+MsC
D1tbUAEYHzuGXpgg08AdXS/7UQTvASvEqsZ4AcS7VWEq3f5ztKD/kCf8qXjCDfjY
CkYTgo0VE7PTTKItV8Um4px7LDBP6rh5GXsFjgz/EGLID/mCnvvshAjbzue7KtRZ
xDPYr6BGg8Wn3rZJeKk21oEmDNCQz6OKTrq32BdhYvnT1py6Qhsxhs2x44XRSNQB
iiYXy2uorhSMmOeEZXnyX2rXWT7Pp1R91+3ad1oTxBaB0ZVM4wDu6TAEWIO24T4n
SAUnPaKeKEnpqegbZ4p3XpP5Eg4L1IvyhycgdY/jjw/6EByWoicZT7nNnch3L/RS
3dZUWGEWC1hLJULBXdo3RyVLkJlFu5mvwIKI/oxMgaEhHhkK/Nc6GNMLfsL3PK+B
GSzsJqrgtX0R3Tgdowae9k8/AUx4TB9NtODJ6TEu8jYY2DaSUUYpHAZdQ3qJUo7g
BSoVr5fMd2aWSM8nPnlI
=QAj4
-----END PGP SIGNATURE-----
Reply to: