request-tracker4 4.4.6+dfsg-1.1+deb12u1 source package in Debian
Changelog
request-tracker4 (4.4.6+dfsg-1.1+deb12u1) bookworm-security; urgency=medium
* Apply upstream patch which fixes several security vulnerabilities
(Closes: #1054516).
- [CVE-2023-41259] Vulnerablility to unvalidated email headers in
incoming email and the mail-gateway REST interface.
- [CVE-2023-41260] Information leakage via response messages returned
from requests sent via the mail-gateway REST interface.
* Replace patches from 4.4.6+dfsg-1.1 with git-dpm managed patches:
- Switch-to-Test-MockTime-HiRes-in-date-api-test.diff
- Update-tests-for-EN-datetime-locale-change-to-space.diff
* Add upstream fix to tests for FTBFS due to expired certs.
-- Andrew Ruthven <email address hidden> Wed, 25 Oct 2023 22:32:15 +1300
Upload details
- Uploaded by:
- Debian Request Tracker Group
- Uploaded to:
- Bookworm
- Original maintainer:
- Debian Request Tracker Group
- Architectures:
- all
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bookworm | release | main | misc |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| request-tracker4_4.4.6+dfsg-1.1+deb12u1.dsc | 5.8 KiB | 1a7e17f215a9ba9b4066c09b5b05c37dc33391d36a62cc3bcf7a42400ef59675 |
| request-tracker4_4.4.6+dfsg.orig-third-party-source.tar.gz | 3.0 MiB | c60bce0df49c477ae50f61836dccdfd63a2bd6abb696e093688c15be7f0966a3 |
| request-tracker4_4.4.6+dfsg.orig.tar.gz | 10.3 MiB | 1eff5bd9e556b5d6682ccd0e5b2f3dcc2c49a9ec4e215dadb90c4caf5e435e9e |
| request-tracker4_4.4.6+dfsg.orig.tar.gz.asc | 455 bytes | f93cefaa0c4d5047118168aa2212752fe4e5906d8696bcf8fc287a2345b53a71 |
| request-tracker4_4.4.6+dfsg-1.1+deb12u1.debian.tar.xz | 144.7 KiB | f0dc53e9295e5133159fbc83e0a90944bb15d8827d5a38e52155d775388af4a6 |
No changes file available.
