Debian Package Tracker

From: Patrick Matthäi <pmatthaei@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted otrs2 6.0.19-1 (source all) into unstable
Date: Thu, 06 Jun 2019 09:04:06 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 06 Jun 2019 10:45:46 +0200
Source: otrs2
Binary: otrs otrs2
Architecture: source all
Version: 6.0.19-1
Distribution: unstable
Urgency: medium
Maintainer: Patrick Matthäi <pmatthaei@debian.org>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Description:
 otrs       - Open Ticket Request System (OTRS 6)
 otrs2      - Open Ticket Request System
Changes:
 otrs2 (6.0.19-1) unstable; urgency=medium
 .
   * New upstream release.
     - Fixes OSA-2019-08, also known as CVE-2019-12248: An attacker could send a
       malicious email to an OTRS system. If a logged in agent user quotes it,
       the email could cause the browser to load external image resources.
     - Fixes OSA-2019-09, also known as CVE-2019-12497: In the customer or
       external frontend, personal information of agents can be disclosed like
       name and mail address in external notes.
   * Merge 6.0.16-2 changelog.
Checksums-Sha1:
 a97e2b179480d07799cf54bebec80cc2c0d537af 1811 otrs2_6.0.19-1.dsc
 05760293373611144a4d1bf1ae9c355616ead992 25403206 otrs2_6.0.19.orig.tar.bz2
 b1d06be9ffcc9ba3afbd5cb7b2419fcb340a9474 29944 otrs2_6.0.19-1.debian.tar.xz
 706db7e703f1cc2c79c6fd629f5c9ed56fa3f9b5 9754860 otrs2_6.0.19-1_all.deb
 c4a8e3eb48e9a72e2a957a6e89432e1877dbfa1f 6250 otrs2_6.0.19-1_amd64.buildinfo
 3b60f0497fc7183da0e136d19a69feb443d89f10 250136 otrs_6.0.19-1_all.deb
Checksums-Sha256:
 8cd61b7364f6c630de870f03aecaca7503ffe67e5261f5b3b1d66f1c62cae29e 1811 otrs2_6.0.19-1.dsc
 bdc8d14922ed8a63fa8fa9f13feca52c39fc6c809b3ad57a9133fba8bb7290c1 25403206 otrs2_6.0.19.orig.tar.bz2
 15ebf3c4513aa77df187b53b70fedf121c3858c48a1f7c1ca311ac3ee1e4700b 29944 otrs2_6.0.19-1.debian.tar.xz
 bb81f81f33acd215783cfe5ddad14ac4a8b0a4dd6600624e70f583e3ecec2013 9754860 otrs2_6.0.19-1_all.deb
 34cd29a1580ef15604483a817f84061b15a3badc2750fbd7aed6fc440bbe74cd 6250 otrs2_6.0.19-1_amd64.buildinfo
 1eded564712e882d9c53deef31a20c3e8a372a7468743016f1ee0aa2c8c764f1 250136 otrs_6.0.19-1_all.deb
Files:
 448744c1abd0eb0031ea0d38f50dd695 1811 non-free/web optional otrs2_6.0.19-1.dsc
 eb44465a1f7217de43d3cfb6f281014a 25403206 non-free/web optional otrs2_6.0.19.orig.tar.bz2
 01f4ba198e8c35e957a4319fe6d66ee9 29944 non-free/web optional otrs2_6.0.19-1.debian.tar.xz
 03e43c959e2645a09b3719128d1c4a6d 9754860 non-free/web optional otrs2_6.0.19-1_all.deb
 43f30dd17fdac1da8373c9e05d92efcb 6250 non-free/web optional otrs2_6.0.19-1_amd64.buildinfo
 909e605d7b4ae943af1c629021154646 250136 non-free/web optional otrs_6.0.19-1_all.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEWKA9xYJCWk3IuQ4TEtmwSpDL2OQFAlz405QACgkQEtmwSpDL
2OQSqQ/7B98BwpdgiQy3U58PZmupsG0K9VEdt4cR7ByalpfalEV0D+BDrVZsO/MA
+rt57rHNf4Az6UBYhhEDPipv0DYejmkp62ozJu2Dpn9sYm6GcVmY7Op3eWWn7IlZ
YBv21cM6VaX6SLOLdenfVbl7EPfXBX+QOv1PGslRo8GDXkhNdWNcMPZXBih4ZwIy
qdWCRzVILkQP6yho1Qp/8lkTq1hURxFNbzHvzHtOceWZutjY4q+et5h3z6e+l1Cb
u3sOgCSrS3vbRwcwjZ2+1b31Zp6RdUy6f/XCDth9cIqzUpmC/a3xZXAvmb58Yiui
GqRCSQR7mXxmh1sHGRLfygAfa20Lk1/kCNr5IfbvKC1dlBnd8kGShY+Xztk7ImN7
iHD7xTVUqjCO/cLW57ip2XyTFxk+CiQKpk+TbsI8K159dtD9x6rf/YYYfVBjt1bu
6BB4vVMkiqtj7bvGpf3ljfiIacFzifXX2QsyhK/z89LVqMfo2lRLy9YIyFPQJFt9
GvN5dmCeLxk5NygJchCfJNwCYPNhk3q1M5lep3azMbluBVr+NWe8S6zl9i8BCMC8
NLIb4hqALXNPbkaSyOXKSM5khCW5oDZhnH/BNXKZcZlKbtWGGqJ2xBkLNA5Pt+2T
OGRGISM4tDmS0AzWnxA0WzbsBJRq1sX7ihT8r6ZrGOZTyj4TnYo=
=atl5
-----END PGP SIGNATURE-----
News for package otrs2
