SUSE Package Hub - openSUSE-2020-1888

Update Info

openSUSE-2020-1888

Security update for otrs

Type: security

Severity: moderate

Issued: 2020-11-09

Description:

This update for otrs fixes the following issues:

- otrs was updated to 6.0.30 (OSA-2020-14 boo#1178434)
  - CVE-2020-11022, CVE-2020-11023: Vulnerability in third-party library - jquery
    OTRS uses jquery version 3.4.1, which is vulnerable to cross-site scripting 
    (XSS).

References

CVE: CVE-2020-11023
CVE: CVE-2020-11022
Bugzilla: 1178434 VUL-0: CVE-2020-1777,CVE-2020-11023,CVE-2020-11022: otrs: OTRS Security Advisory 2020-15

Packages

otrs-6.0.30-bp152.2.11.1