Nom du paquet
otrs
Date
2013-07-02
Advisory ID
MDVSA-2013:188
Affected versions
MBS1 x86_64

Problem description

Updated otrs package fixes security vulnerabilities:

An attacker with a valid agent login could manipulate URLs in the
ticket watch mechanism to see contents of tickets they are not
permitted to see (CVE-2013-3551, CVE-2013-4088).

Updated packages

MBS1 x86_64

 2434c569f54d99ad362b658fcfd915fe  mbs1/x86_64/otrs-3.2.8-1.mbs1.noarch.rpm 
 9a95a42ea0b69ee31446191b87799bc1  mbs1/SRPMS/otrs-3.2.8-1.mbs1.src.rpm

References