Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5699-1] redmine security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5699-1] redmine security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5699-1] redmine security update
  • Date: Fri, 24 May 2024 16:43:49 +0000
  • List-archive: https://lists.debian.org/msgid-search/ZlDDxTDP48P31Um7 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=UM0fBqWDn6/U3Ee7lMuP1z2C8e3IDhb4VZbaA++fT3A=; b=Rg Pejy5E5Ev8qADFghHcbwFBqIpbzbDKZR5swAbNktMdCNU8PxH0q9/Nrzm9wG3ZVIp6u8r74LeRFu+ b51IOG2l/PJRhjZ9WHa87mfiMYNM+9c50NNkbWLD+0PuV5vgbYSDHk1wnngvmO2A7DkfeVYzhTv3j kdkVRr4Yrh41lv85bHuD7hOJUJqNzstiyzodSVII63m8mAMEwA0yWlyWaIq0uV8veFH6tWck15gHj 6AIShMg+IOL4ZC9rGWgxgk1rEn5pApgw+d0IkjZTjOUUEqRRYFh9JBnUkiiqjkkkNaLdgvps6bSv1 W9WiTJUUGwvLhQgdx83lGznqiV2paEFQ==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Fri, 24 May 2024 16:44:23 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <2zQXED05i5E.A.w90E.nPMUmB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5699-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
May 24, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : redmine
CVE ID : CVE-2023-47258 CVE-2023-47259 CVE-2023-47260

Multiple cross-site scripting vulnerabilities were found in Redmine,
a project management web application.

For the stable distribution (bookworm), these problems have been fixed in
version 5.0.4-5+deb12u1.

We recommend that you upgrade your redmine packages.

For the detailed security status of redmine please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/redmine

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Fejb
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5699-1] redmine security update, Moritz Muehlenhoff, 24.05.2024

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang