Back to bug 1318562
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-03-17 09:03:30 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-03-17 09:03:30 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-03-17 09:07:06 UTC | Blocks | 1318564 | |
| Adam Mariš | 2016-03-17 09:19:11 UTC | Whiteboard | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.1/AV:N/AC:M/Au:N/C:N/I:C/A:N,cwe=CWE-22,rhel-5/tar=new,rhel-6/tar=new,rhel-7/tar=new,fedora-all/tar=affected | impact=moderate,public=no,reported=20160316,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-22,rhel-5/tar=new,rhel-6/tar=new,rhel-7/tar=new,fedora-all/tar=affected |
| Tomas Hoger | 2016-03-18 09:36:14 UTC | Priority | high | medium |
| Severity | high | medium | ||
| Adam Mariš | 2016-03-21 15:19:22 UTC | Priority | medium | high |
| Whiteboard | impact=moderate,public=no,reported=20160316,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-22,rhel-5/tar=new,rhel-6/tar=new,rhel-7/tar=new,fedora-all/tar=affected | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=new,rhel-6/tar=new,rhel-7/tar=new,fedora-all/tar=affected | ||
| Severity | medium | high | ||
| Stefan Cornelius | 2016-04-05 11:29:17 UTC | Whiteboard | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=new,rhel-6/tar=new,rhel-7/tar=new,fedora-all/tar=affected | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,fedora-all/tar=affected |
| Stefan Cornelius | 2016-04-05 12:15:25 UTC | Whiteboard | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,fedora-all/tar=affected | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected |
| Stefan Cornelius | 2016-04-05 12:23:10 UTC | Priority | high | medium |
| Whiteboard | impact=important,public=no,reported=20160316,source=researcher,cvss2=7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | impact=moderate,public=no,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | ||
| Severity | high | medium | ||
| Stefan Cornelius | 2016-08-17 10:06:03 UTC | Alias | CVE-2016-6321 | |
| Stefan Cornelius | 2016-08-17 10:06:06 UTC | Summary | EMBARGOED tar: Bypassing the extract path name | EMBARGOED CVE-2016-6321 tar: Bypassing the extract path name |
| Andrej Nemec | 2016-10-27 07:18:06 UTC | CC | anemec | |
| Whiteboard | impact=moderate,public=no,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | impact=moderate,public=no,reported=20160316,source=20161027,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | ||
| Andrej Nemec | 2016-10-27 07:21:14 UTC | Whiteboard | impact=moderate,public=no,reported=20160316,source=20161027,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | impact=moderate,public=20161027,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected |
| Andrej Nemec | 2016-10-27 07:21:30 UTC | Summary | EMBARGOED CVE-2016-6321 tar: Bypassing the extract path name | CVE-2016-6321 tar: Bypassing the extract path name |
| Andrej Nemec | 2016-10-27 07:21:33 UTC | Group | security, qe_staff | |
| Andrej Nemec | 2016-10-27 07:21:52 UTC | Depends On | 1389192 | |
| Salvatore Bonaccorso | 2016-10-28 05:13:31 UTC | CC | carnil | |
| Slawomir Czarko | 2016-10-28 08:40:17 UTC | CC | slawomir | |
| Norman Sardella | 2016-10-30 15:43:44 UTC | CC | sardella | |
| Pavel Raiskup | 2016-10-31 08:23:33 UTC | CC | scorneli | |
| Flags | needinfo?(scorneli) | |||
| Pavel Raiskup | 2016-12-08 08:51:09 UTC | Flags | needinfo?(scorneli) | |
| Huzaifa S. Sidhpurwala | 2016-12-09 06:15:52 UTC | Whiteboard | impact=moderate,public=20161027,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=affected,rhel-6/tar=affected,rhel-7/tar=affected,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | impact=moderate,public=20161027,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=wontfix,rhel-6/tar=wontfix,rhel-7/tar=wontfix,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected |
| PnT Account Manager | 2019-05-02 21:51:10 UTC | CC | anemec | |
| Product Security DevOps Team | 2019-06-08 02:49:49 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2019-06-08 02:49:49 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:45:56 UTC | Whiteboard | impact=moderate,public=20161027,reported=20160316,source=researcher,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cwe=CWE-22,rhel-5/tar=wontfix,rhel-6/tar=wontfix,rhel-7/tar=wontfix,rhel-5/star=notaffected,rhel-6/star=notaffected,rhel-7/star=notaffected,fedora-all/tar=affected,fedora-all/star=notaffected | |
| Steve Grubb | 2020-04-02 15:47:58 UTC | CC | sgrubb |
Back to bug 1318562