Back to bug 1016960
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Murray McAllister | 2013-10-09 04:01:26 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2013-10-09 04:01:26 UTC | Doc Type | --- | Bug Fix |
| Murray McAllister | 2013-10-09 04:01:49 UTC | CC | jkurik, pfrields, rjones | |
| Murray McAllister | 2013-10-09 04:56:17 UTC | Blocks | 1016967 | |
| Murray McAllister | 2013-10-09 05:06:15 UTC | CC | misc | |
| Richard W.M. Jones | 2013-10-09 09:37:44 UTC | CC | mbooth | |
| Richard W.M. Jones | 2013-10-09 11:34:14 UTC | Flags | needinfo? | |
| Matthew Booth | 2013-10-09 13:02:47 UTC | Flags | needinfo? | |
| Matthew Booth | 2013-10-09 13:03:47 UTC | CC | mmcallis | |
| Flags | needinfo?(mmcallis) | |||
| Murray McAllister | 2013-10-09 14:32:08 UTC | Whiteboard | impact=moderate,public=no,reported=20131008,source=secalert,cvss2=4.6/AV:L/AC:L/Au:N/C:P/I:P/A:P,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=moderate,public=no,reported=20131008,source=secalert,cvss2=7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected |
| Murray McAllister | 2013-10-09 14:32:14 UTC | Severity | medium | high |
| Murray McAllister | 2013-10-09 14:32:20 UTC | Whiteboard | impact=moderate,public=no,reported=20131008,source=secalert,cvss2=7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=important,public=no,reported=20131008,source=secalert,cvss2=7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected |
| Murray McAllister | 2013-10-09 14:32:27 UTC | Priority | medium | high |
| Vincent Danen | 2013-10-09 14:36:33 UTC | Flags | needinfo?(mmcallis) | |
| Murray McAllister | 2013-10-10 02:41:25 UTC | Whiteboard | impact=important,public=no,reported=20131008,source=secalert,cvss2=7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=important,public=no,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected |
| Murray McAllister | 2013-10-10 02:41:32 UTC | Severity | high | medium |
| Murray McAllister | 2013-10-10 02:41:41 UTC | Whiteboard | impact=important,public=no,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=moderate,public=no,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected |
| Murray McAllister | 2013-10-10 02:41:47 UTC | Priority | high | medium |
| Richard W.M. Jones | 2013-10-10 14:53:03 UTC | Flags | needinfo? | |
| Murray McAllister | 2013-10-11 04:20:34 UTC | Alias | CVE-2013-4419 | |
| Murray McAllister | 2013-10-11 04:20:40 UTC | Summary | EMBARGOED libguestfs: insecure temporary directory handling for guestfish's network socket | EMBARGOED CVE-2013-4419 libguestfs: insecure temporary directory handling for guestfish's network socket |
| Murray McAllister | 2013-10-11 08:08:58 UTC | Flags | needinfo? | |
| Richard W.M. Jones | 2013-10-11 11:36:37 UTC | Attachment #809855 Attachment is obsolete | 0 | 1 |
| Attachment #809857 Attachment is obsolete | 0 | 1 | ||
| Richard W.M. Jones | 2013-10-14 19:03:34 UTC | Flags | needinfo? | |
| Vincent Danen | 2013-10-15 21:42:04 UTC | Flags | needinfo? | |
| Vincent Danen | 2013-10-15 21:44:32 UTC | Depends On | 1019503 | |
| Huzaifa S. Sidhpurwala | 2013-10-16 10:20:34 UTC | Depends On | 1019737 | |
| Huzaifa S. Sidhpurwala | 2013-10-16 10:27:30 UTC | Blocks | 974906 | |
| Tomas Hoger | 2013-10-17 20:28:53 UTC | Summary | EMBARGOED CVE-2013-4419 libguestfs: insecure temporary directory handling for guestfish's network socket | CVE-2013-4419 libguestfs: insecure temporary directory handling for guestfish's network socket |
| Tomas Hoger | 2013-10-17 20:28:59 UTC | Group | security, qe_staff | |
| Tomas Hoger | 2013-10-17 20:30:02 UTC | Fixed In Version | libguestfs 1.20.12, libguestfs 1.22.7, libguestfs 1.24 | |
| Tomas Hoger | 2013-10-17 20:55:37 UTC | Whiteboard | impact=moderate,public=no,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=moderate,public=20131017,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected |
| Tomas Hoger | 2013-10-17 20:56:00 UTC | Depends On | 1020535 | |
| Lei Wang | 2013-10-18 03:42:31 UTC | CC | bfan, leiwang, wshi | |
| Vincent Danen | 2013-10-18 15:14:26 UTC | Depends On | 1020950 | |
| Florian Weimer | 2013-10-30 18:07:16 UTC | CC | fweimer | |
| Huzaifa S. Sidhpurwala | 2013-11-22 06:19:54 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2013-11-22 01:19:54 UTC | |||
| Ján Rusnačko | 2014-08-29 16:19:03 UTC | CC | jrusnack | |
| Whiteboard | impact=moderate,public=20131017,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected | impact=moderate,public=20131017,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected,cwe=CWE-377 | ||
| John Skeoch | 2015-01-04 22:37:42 UTC | CC | vdanen | |
| Viliam Križan | 2015-07-31 11:34:35 UTC | CC | vkrizan | |
| Whiteboard | impact=moderate,public=20131017,reported=20131008,source=secalert,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected,cwe=CWE-377 | impact=moderate,public=20131017,reported=20131008,source=redhat,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected,cwe=CWE-377 | ||
| Vincent Danen | 2015-10-15 18:02:27 UTC | Whiteboard | impact=moderate,public=20131017,reported=20131008,source=redhat,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=affected,cwe=CWE-377 | impact=moderate,public=20131017,reported=20131008,source=redhat,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=notaffected,cwe=CWE-377 |
| Product Security DevOps Team | 2019-09-29 13:09:10 UTC | Whiteboard | impact=moderate,public=20131017,reported=20131008,source=redhat,cvss2=6.8/AV:A/AC:H/Au:N/C:C/I:C/A:C,fedora-all/libguestfs=affected,epel-5/libguestfs=affected,rhel-6/libguestfs=affected,rhel-7/libguestfs=notaffected,cwe=CWE-377 |
Back to bug 1016960