Back to bug 1016599
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Stephen Gallagher | 2013-10-08 11:40:23 UTC | Keywords | Security | |
| CC | security-response-team | |||
| Red Hat Bugzilla | 2013-10-08 11:40:23 UTC | Doc Type | --- | Bug Fix |
| Vincent Danen | 2013-10-08 14:47:15 UTC | Group | qe_staff | |
| CC | sgallagh | |||
| Component | ReviewBoard | vulnerability | ||
| Version | rawhide | unspecified | ||
| Assignee | sgallagh | security-response-team | ||
| Product | Fedora | Security Response | ||
| Summary | URL processing allows unauthorized users to view review lists | EMBARGOED ReviewBoard: URL processing allows unauthorized users to view review lists | ||
| QA Contact | extras-qa | |||
| Vincent Danen | 2013-10-08 14:47:59 UTC | Whiteboard | impact=moderate,public=None,reported=None,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected | |
| Vincent Danen | 2013-10-08 14:48:05 UTC | Alias | CVE-2013-4411 | |
| Vincent Danen | 2013-10-08 14:48:12 UTC | Summary | EMBARGOED ReviewBoard: URL processing allows unauthorized users to view review lists | EMBARGOED CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists |
| Vincent Danen | 2013-10-08 14:48:17 UTC | Whiteboard | impact=moderate,public=None,reported=None,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected | impact=moderate,public=20131010,reported=None,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected |
| Vincent Danen | 2013-10-08 14:48:21 UTC | Whiteboard | impact=moderate,public=20131010,reported=None,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected | impact=moderate,public=20131010,reported=20131008,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected |
| Vincent Danen | 2013-10-08 14:48:25 UTC | Whiteboard | impact=moderate,public=20131010,reported=20131008,source=None,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected | impact=moderate,public=20131010,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected |
| Vincent Danen | 2013-10-08 14:49:24 UTC | Priority | unspecified | medium |
| Whiteboard | impact=moderate,public=20131010,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected | impact=moderate,public=20131010,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected,epel-6/ReviewBoard=affected | ||
| Severity | high | medium | ||
| Vincent Danen | 2013-10-08 14:53:09 UTC | Blocks | 1016713 | |
| Murray McAllister | 2013-10-10 23:48:08 UTC | Whiteboard | impact=moderate,public=20131010,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected,epel-6/ReviewBoard=affected | impact=moderate,public=20131011,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected,epel-6/ReviewBoard=affected |
| Murray McAllister | 2013-10-10 23:48:33 UTC | Summary | EMBARGOED CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists | CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists |
| Murray McAllister | 2013-10-10 23:48:38 UTC | Group | security, qe_staff | |
| Murray McAllister | 2013-10-10 23:52:10 UTC | Depends On | 1017999 | |
| Murray McAllister | 2013-10-10 23:52:37 UTC | Depends On | 1018000 | |
| Murray McAllister | 2013-10-10 23:59:57 UTC | CC | mmcallis | |
| John Skeoch | 2015-01-04 22:43:50 UTC | CC | mmcallis | vdanen |
| Vincent Danen | 2015-01-05 17:12:38 UTC | CC | vdanen | |
| Product Security DevOps Team | 2019-06-08 02:30:38 UTC | Status | NEW | CLOSED |
| Resolution | --- | UPSTREAM | ||
| Last Closed | 2019-06-08 02:30:38 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:09:10 UTC | Whiteboard | impact=moderate,public=20131011,reported=20131008,source=redhat,cvss2=4/AV:N/AC:L/Au:S/C:P/I:N/A:N,fedora-all/ReviewBoard=affected,epel-6/ReviewBoard=affected |
Back to bug 1016599