Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 183562

Summary: www-apps/otrs XSS vulnerabilities
Product: Gentoo Security Reporter: Allen Parker <infowolfe>
Component: VulnerabilitiesAssignee: Renat Lumpau (RETIRED) <rl03>
Status: RESOLVED DUPLICATE    
Severity: critical CC: web-apps
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://otrs.org/advisory/OSA-2007-01-en/
Whiteboard:
Package list:
Runtime testing required: ---

Description Allen Parker 2007-06-28 18:30:22 UTC 
OTRS version 2.0.4 should be immediately updated to 2.0.5 (stable) due to multiple security fixes.

OTRS versions 2.1.6 and 2.1.7 have both been released. Latest ~arch is 2.1.5. 2.2.0 should be here in about 4 days.

Current 2.0.x ebuild *does* work when tested against otrs-2.0.5 locally, and 2.1.7 works on 2.1.5 ebuild.
Comment 1 Jakub Moc (RETIRED) gentoo-dev 2007-06-28 18:46:10 UTC 

*** This bug has been marked as a duplicate of bug 177630 ***