Debian Security Advisory
DSA-4317-1 otrs2 -- security update
- Date Reported:
- 14 Oct 2018
- Affected Packages:
- otrs2
- Vulnerable:
- Yes
- Security database references:
- In Mitre's CVE dictionary: CVE-2018-14593, CVE-2018-16586, CVE-2018-16587.
- More information:
-
Three vulnerabilities were discovered in the Open Ticket Request System which could result in privilege escalation or denial of service.
For the stable distribution (stretch), these problems have been fixed in version 5.0.16-1+deb9u6.
We recommend that you upgrade your otrs2 packages.
For the detailed security status of otrs2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/otrs2