Security Information / 2023 / Security Information -- DSA-5454-1 kanboard

Debian Security Advisory

DSA-5454-1 kanboard -- security update

Date Reported:

16 Jul 2023

Affected Packages:

kanboard

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2023-36813.

More information:

Riccardo Bonafede discovered that the Kanboard project management software was susceptible to SQL injection.

For the stable distribution (bookworm), this problem has been fixed in version 1.2.26+ds-2+deb12u2.

We recommend that you upgrade your kanboard packages.

For the detailed security status of kanboard please refer to its security tracker page at: https://security-tracker.debian.org/tracker/kanboard