[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted otrs2 6.0.25-1 (source) into unstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 20 Jan 2020 11:21:00 +0100
Source: otrs2
Architecture: source
Version: 6.0.25-1
Distribution: unstable
Urgency: high
Maintainer: Patrick Matthäi <pmatthaei@debian.org>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Changes:
 otrs2 (6.0.25-1) unstable; urgency=high
 .
   * New upstream release.
     - Fixes CVE-2020-1767, also known as OSA-2020-03: Agent A is able to save a
       draft (i.e. for customer reply). Then Agent B can open the draft, change
       the text completely and send it in the name of Agent A. For the customer
       it will not be visible that the message was sent by another agent.
Checksums-Sha1:
 41c2fee36f094cc1e910f14fe9e6cb989d4940d7 1817 otrs2_6.0.25-1.dsc
 82815f9d6fc8aee0b5dd67bd4c2609a3eb5cff01 25626939 otrs2_6.0.25.orig.tar.bz2
 f08dafd10ff0a747cc9b2f499c94ecd7b8603687 30472 otrs2_6.0.25-1.debian.tar.xz
 819dfff203c0a3718c050226fbf34af9cbab69b3 5608 otrs2_6.0.25-1_source.buildinfo
Checksums-Sha256:
 91a68fd12eb6aa899e75231cf2ac0ab04e06e87dfeb5d8b77ffeb2afa6b1722e 1817 otrs2_6.0.25-1.dsc
 991d6195882d282e08dd4c6d31edace959a6aee7ce9dc0de233439fad2d99e63 25626939 otrs2_6.0.25.orig.tar.bz2
 46eb58098da3bf5b749dae3d40d0f3f5f4d1b5edbdcf14e4dbf1cd09e2f889e9 30472 otrs2_6.0.25-1.debian.tar.xz
 c5e7626bfc793d3ab5a5c31e353dbe158f4885917b45e3d8cb5e46217664e33a 5608 otrs2_6.0.25-1_source.buildinfo
Files:
 3cdcd5b70794d07dc9030330e81b94e0 1817 non-free/web optional otrs2_6.0.25-1.dsc
 970d00ef946567f5edb674cde9b58a69 25626939 non-free/web optional otrs2_6.0.25.orig.tar.bz2
 f7780e41122b2bbae9254b3ac451bc23 30472 non-free/web optional otrs2_6.0.25-1.debian.tar.xz
 2cadd11fdd391f00bc3ad6cff8278072 5608 non-free/web optional otrs2_6.0.25-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEWKA9xYJCWk3IuQ4TEtmwSpDL2OQFAl4lgn4ACgkQEtmwSpDL
2OSFxg//XgV3JVmE76ZtKV+JxEHcfyjfvbykvAZV6g+AIryYeFgY8crrCrVF/Eas
g2OUYEo7VW2uRjd5Qg4Z88VMYdRwFIsNkGLRRZwR12kon3Yl28MO0bqwXrvT4szA
g8kvx+tN0I79NGh9pJQfz96n4ZjTJpNsYmnZonNNFvR1kT6EuWXIElSTFLTkoZq2
X2wk5h7ksrIky/iEaWGPRXqig2Gy9oDpegiKt48UMqGeR/RzsMwQHmeO3pQ3wkB3
t3uQZNK3x7/ccxjCHPi4RUT/QUI5v7LU3Adt/Dd5WyRndpJuIoHbCRPX6HYOagri
uZExQC8pdmTIs/MzaehhIm5GXxEETnVd5EO3ItIKF2C4IPwkd++cNA9OdZHxwXsE
u8uHbpeh/LYQaDa5wJ2PxM0Yp4Wmy8ngluQ8HrnusuvHhsUXKP4hdHP+3A0NLLXl
NAYL5AA4U9ZRCYVfw1jAni3ocqOpV5Z3/uqKXlLdwjOMQM7y1gcSjbRt9rOWotTM
z469JqT2hqj9hNi/HDy9XhYrVJdIVuMshDED1W9HP2lPMHWhK+HZj7op36qTutq2
+vLsdNMgb0Rk/zHqW6lNcifDsCDAIsJFvoRMf9inbToXyuYn9+ImPjUptPnRVl1j
RdSkSrRRmlZOie7SENHqZPe7SmRw0AsmOfXEFdUpC2EnAh+8q4c=
=51i2
-----END PGP SIGNATURE-----
Reply to: