Source: redmine Version: 3.0~20140825-5 Severity: important Tags: security upstream patch fixed-upstream Forwarded: https://www.redmine.org/issues/21136
Hi, the following vulnerability was published for redmine. CVE-2015-8473[0]: Issues API may disclose changeset messages that are not visible If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2015-8473 [1] https://www.redmine.org/issues/21136 Please adjust the affected versions in the BTS as needed. Regards, Salvatore