3 matches found
CVE-2015-8473
The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote authenticated users to obtain sensitive information in changeset messages by leveraging permission to read issues with related changesets from other projects...
CVE-2015-8473
Redmine's CVE-2015-8473 affects the Issues API: before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2, remote authenticated users could read changeset messages and obtain sensitive information from related changesets in other projects due to insufficient access checks. The issue is a informati...
[SECURITY] [DSA 3529-1] redmine security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3529-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 23, 2016 https://www.debian.org/security/faq -...