+++++++++ Security Advisory 2020-05: Security Update for OTRS Framework +++++++++ Releases: OTRS 7.0.x, ((OTRS)) Community Edition 6.0.x Release date: 07-February-2020 Status: Patch Level Release SECURITY FIXES: ============== ------------------------------------------------------------------ OTRS Security Advisory 2020-05 <security at otrs.org> ------------------------------------------------------------------ ID: OSA-2020-05 Date: 2020-02-07 Title: Vulnerability in third-party library - jquery Severity: Medium Product: OTRS 7.0.x, ((OTRS)) Community Edition 6.0.x Fixed in: OTRS 7.0.15, ((OTRS)) Community Edition 6.0.26 References: CVE-2019-11358 To read the entire Security Advisory please follow this link. https://community.otrs.com/security-advisory-2020-05 +++++++++ Security Advisory 2020-04: Security Update for OTRS Framework +++++++++ Releases: OTRS 7.0.x Release date: 07-February-2020 Status: Patch Level Release SECURITY FIXES: ============== ------------------------------------------------------------------ OTRS Security Advisory 2020-04 <security at otrs.org> ------------------------------------------------------------------ ID: OSA-2020-04 Date: 2020-02-07 Title: External interface does not invalidate user session Severity: Medium Product: OTRS 7.0.x Fixed in: OTRS 7.0.15 References: CVE-2020-1768 To read the entire Security Advisory please follow this link. https://community.otrs.com/security-advisory-2020-04 With kind regards Sabrina Seubert – Marketing Manager OTRS AG Zimmersmühlenweg 11 61440 Oberursel Germany T: +49 6172 681988-0 F: +49 9421 56818-18 I: https://www.otrs.com/ Business location: Oberursel, Country Court: Bad Homburg, HRB 10751, VAT ID: DE256610065 Chairman: Burchard Steinbild, Managing Board: André Mindermann (CEO), Christopher Kuhn, Sabine Riedel OTRS 7 | Automation • Agility • Communication • Transparency Find out more OTRS is a SERVIEW CERTIFIEDTOOL. --------------------------------------------------------------------- OTRS mailing list: announce - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/announce To unsubscribe: http://lists.otrs.org/mailman/listinfo/announce