Debian Security Advisory
DSA-3529-1 redmine -- security update
- Date Reported:
- 23 Mar 2016
- Affected Packages:
- redmine
- Vulnerable:
- Yes
- Security database references:
- In Mitre's CVE dictionary: CVE-2015-8474, CVE-2015-8346, CVE-2015-8473, CVE-2015-8537.
- More information:
-
Multiple vulnerabilities have been found in Redmine, a project management web application, which may result in information disclosure.
For the stable distribution (jessie), these problems have been fixed in version 3.0~20140825-8~deb8u2.
For the testing distribution (stretch), these problems have been fixed in version 3.2.0-1.
For the unstable distribution (sid), these problems have been fixed in version 3.2.0-1.
We recommend that you upgrade your redmine packages.