Format: 1.8
Date: Thu, 06 Jun 2019 10:45:46 +0200
Source: otrs2
Binary: otrs otrs2
Architecture: all
Version: 6.0.19-1
Distribution: eoan-proposed
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy01-amd64-029.buildd>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Description:
 otrs       - Open Ticket Request System (OTRS 6)
 otrs2      - Open Ticket Request System
Changes:
 otrs2 (6.0.19-1) unstable; urgency=medium
 .
   * New upstream release.
     - Fixes OSA-2019-08, also known as CVE-2019-12248: An attacker could send a
       malicious email to an OTRS system. If a logged in agent user quotes it,
       the email could cause the browser to load external image resources.
     - Fixes OSA-2019-09, also known as CVE-2019-12497: In the customer or
       external frontend, personal information of agents can be disclosed like
       name and mail address in external notes.
   * Merge 6.0.16-2 changelog.
Checksums-Sha1:
 2bdde78f8a246f7d5e19febb4f03a5da57330db3 9292700 otrs2_6.0.19-1_all.deb
 22bf07adec6059016da39fe3269067de8e767e23 4905 otrs2_6.0.19-1_amd64.buildinfo
 ad0fef9aac97120176264e7c113aa1d214023e4d 3208 otrs_6.0.19-1_all.deb
Checksums-Sha256:
 15727499d3fb86887d90f2d9311747e7cc98dc92bb8454a2e21dca5234fbdfe5 9292700 otrs2_6.0.19-1_all.deb
 9be316558bc653d49dfea970959cfc6931f6dfe28f365da46612bb114d449575 4905 otrs2_6.0.19-1_amd64.buildinfo
 3632bd9d3e37c0184ba8dbabf31515d6892d58595d21a347d39e958b3c8bc92d 3208 otrs_6.0.19-1_all.deb
Files:
 bb439c2e34dc66a6502423ab036d7665 9292700 non-free/web optional otrs2_6.0.19-1_all.deb
 832c0aa7d13a9bbf01d56b1dabb7dc49 4905 non-free/web optional otrs2_6.0.19-1_amd64.buildinfo
 a42355bddde3e7b8e5161f9216d285f7 3208 non-free/web optional otrs_6.0.19-1_all.deb