redmine 3.2.1-2ubuntu0.2 source package in Ubuntu
Changelog
redmine (3.2.1-2ubuntu0.2) xenial-security; urgency=medium
* SECURITY UPDATE: persistent XSS exists due to textile formatting
- debian/patches/0020-Fix-CVE-2019-17427.patch: improve the way
that html tags are identified to be escaped. (LP: #1853063)
- CVE-2019-17427
- https://www.cvedetails.com/cve/CVE-2019-17427/
- Redmine Defect #31520
* SECURITY UPDATE: SQL injection vulnerability
- debian/patches/0021-Fix-CVE-2019-18890.patch: use map instead of each
because it casts the values to integer and return a new array.
(LP: #1853063)
- CVE-2019-18890
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18890
- Redmine Defect #32374
-- Lucas Kanashiro <email address hidden> Mon, 18 Nov 2019 18:15:09 -0300
Upload details
- Uploaded by:
- Lucas Kanashiro
- Sponsored by:
- Paulo Flabiano Smorigo
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | updates | universe | web | |
| Xenial | security | universe | web |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| redmine_3.2.1.orig.tar.gz | 2.2 MiB | ec7116d2c6e58546b5e11c56798ad12b5d22f09f4dbd366eec2cb86a2f184bcf |
| redmine_3.2.1-2ubuntu0.2.debian.tar.xz | 232.0 KiB | fee408435870ee40bc47006c9d566bef6ab6f764383a32a9dfde9802a2a7a814 |
| redmine_3.2.1-2ubuntu0.2.dsc | 2.7 KiB | 17c5e354d63ce5cfbecb5e0b2538bded51876f40b639c6ac75e7a74a12160b50 |
Available diffs
- diff from 3.2.1-2ubuntu0.1 to 3.2.1-2ubuntu0.2 (560 bytes)
Binary packages built by this source
- redmine: flexible project management web application
Redmine is a flexible project management web application. Written using Ruby
on Rails framework, it is cross-platform and cross-database.
.
Dependencies for database support are provided by these metapackages:
redmine-mysql, redmine-pgsql, redmine-sqlite.
.
Features
* Multiple projects support
* Flexible role based access control
* Flexible issue tracking system
* Gantt chart and calendar
* News, documents & files management
* Feeds & email notifications
* Per project wiki
* Per project forums
* Time tracking
* Custom fields for issues, time-entries, projects and users
* SCM integration (SVN, CVS, Git, Mercurial, Bazaar and Darcs)
* Issue creation via email
* Multiple LDAP authentication support
* User self-registration support
* Multilanguage support
- redmine-mysql: metapackage providing MySQL dependencies for Redmine
This package only provides MySQL dependencies for Redmine, a
flexible project management web application. Install this
one if you want to use a MySQL database with Redmine.
.
Redmine package should be installed along with this package.
- redmine-pgsql: metapackage providing PostgreSQL dependencies for Redmine
This package provides PostgreSQL dependencies for Redmine, a
flexible project management web application. Install this
one if you want to use a PostgreSQL database with Redmine.
.
Redmine package should be installed along with this package.
- redmine-sqlite: metapackage providing sqlite dependencies for Redmine
This package provides sqlite dependencies for Redmine, a
flexible project management web application. Install this
one if you want to use a sqlite database with Redmine.
.
Redmine package should be installed along with this package.
