-
otrs2 (6.0.30-2) unstable; urgency=medium
* Bump Standards-Version to 4.5.1.
* Update debian/watch file standard to version 4.
* Adjust lintian overrides.
-- Patrick Matthäi <email address hidden> Thu, 19 Nov 2020 14:59:19 +0100
-
otrs2 (6.0.30-1) unstable; urgency=high
* New upstream release.
- Fixes CVE-2020-11023 and CVE-2020-11022, also known as OSA-2020-14: OTRS
uses jquery version 3.4.1, which is vulnerable to cross-site scripting
(XSS).
* Adjust lintian overrides.
-- Patrick Matthäi <email address hidden> Mon, 12 Oct 2020 10:31:12 +0200
-
otrs2 (6.0.29-1) unstable; urgency=high
* New upstream release.
- Fixes CVE-2020-1776, also known as OSA-2020-13: When an agent user is
renamed or set to invalid the session belonging to the user is kept
active. The session can not be used to access ticket data in the case the
agent is invalid.
* Add missing dependency on libmoo-perl.
* Adjust many lintian overrides.
* Replace shebangs with /usr/bin/perl.
* Don't install examples anymore.
-- Patrick Matthäi <email address hidden> Tue, 21 Jul 2020 10:25:01 +0200