File _patchinfo of Package patchinfo

<patchinfo incident="17877">
  <issue tracker="bnc" id="1208591">VUL-0: CVE-2023-25579: nextcloud: Potential directory traversal in OC\Files\Node\Folder::getFullPath</issue>
  <issue tracker="bnc" id="1205802">VUL-0: CVE-2022-39346: nextcloud:  Missing length validation of user displayname allows to generate an SQL error</issue>
  <issue tracker="bnc" id="1203190">VUL-1: CVE-2022-35931: nextcloud: Password Policy app could generate passwords that would be block</issue>
  <issue tracker="cve" id="2022-35931"/>
  <issue tracker="cve" id="2023-25579"/>
  <issue tracker="cve" id="2022-39346"/>
  <packager>ecsos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for nextcloud</summary>
  <description>This update for nextcloud fixes the following issues:

- Update to 23.0.12
  See: https://nextcloud.com/changelog/#latest23

- This also fix security issues:
  - CVE-2022-35931: Password Policy app could generate passwords that would be block (boo#1203190) 
  - CVE-2022-39346: Missing length validation of user displayname allows to generate an SQL error (boo#1205802)
  - CVE-2023-25579: Potential directory traversal in OC\Files\Node\Folder::getFullPath (boo#1208591)
</description>
</patchinfo>