Executive Summary

Summary
Titleredmine security update
Informations
NameDSA-3529First vendor Publication2016-03-23
VendorDebianLast vendor Modification2016-03-23
Severity (Vendor) N/ARevision1

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:N)
Cvss Base Score5.8Attack RangeNetwork
Cvss Impact Score4.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple vulnerabilities have been found in Redmine, a project management web application, which may result in information disclosure.

For the stable distribution (jessie), these problems have been fixed in version 3.0~20140825-8~deb8u2.

For the testing distribution (stretch), these problems have been fixed in version 3.2.0-1.

For the unstable distribution (sid), these problems have been fixed in version 3.2.0-1.

We recommend that you upgrade your redmine packages.

Original Source

Url : http://www.debian.org/security/2016/dsa-3529

CWE : Common Weakness Enumeration

%idName
67 %CWE-200Information Exposure
33 %CWE-199Information Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application82
Os2

Nessus® Vulnerability Scanner

DateDescription
2016-03-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3529.nasl - Type : ACT_GATHER_INFO
2015-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_21bc4d719ed811e58f5c002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_3ec2e0bc9ed711e58f5c002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_be63533c9ed711e58f5c002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-11-30Name : The remote Debian host is missing a security update.
File : debian_DLA-351.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2016-04-21 05:28:00
  • Multiple Updates
2016-04-21 00:28:33
  • Multiple Updates
2016-04-12 21:27:57
  • Multiple Updates
2016-03-25 13:26:21
  • Multiple Updates
2016-03-23 21:21:32
  • First insertion