Update to 19.0.13, Fixes various CVEs

This update has been submitted for testing by lcts.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
Module
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
BZ#1981503 CVE-2021-32688 nextcloud: Improper permission check permits tokens to change their own permissions [fedora-all]
0
0
BZ#1981505 CVE-2021-32680 nextcloud: Improper audit logging for expiration date events [fedora-all]
0
0
BZ#1981817 CVE-2021-32678 nextcloud: ratelimit not applied on OCS API responses [fedora-all]
0
0
BZ#1981819 CVE-2021-32679 nextcloud: filenames not escaped by default in controllers using DownloadResponse [fedora-all]
0
0
BZ#1981821 CVE-2021-32703 nextcloud: lack of ratelimit on shareinfo endpoint [fedora-all]
0
0
BZ#1981824 CVE-2021-32705 nextcloud: lack of ratelimit on public DAV endpoint [fedora-all]
0
0

Automated Test Results