Back to bug 1382294
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Cedric Buissart | 2016-10-06 09:30:17 UTC | Blocks | 1380329 | |
| Tomas Hoger | 2016-10-06 09:35:49 UTC | Summary | CVE-2016-7976 various userparams allow %pipe% in paths, allowing remote shell | CVE-2016-7976 ghostscript: various userparams allow %pipe% in paths, allowing remote shell |
| Adam Mariš | 2016-10-07 07:25:26 UTC | CC | amaris | |
| Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=cwe-20,rhel-5/ghostscript=new,rhel-6/ghostscript=new,rhel-7/ghostscript=new,fedora-all/ghostscript=new | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=new,rhel-6/ghostscript=new,rhel-7/ghostscript=new,fedora-all/ghostscript=new | ||
| Adam Mariš | 2016-10-07 07:26:08 UTC | CC | amaris | |
| Cedric Buissart | 2016-10-07 08:49:02 UTC | Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=new,rhel-6/ghostscript=new,rhel-7/ghostscript=new,fedora-all/ghostscript=new | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=new,rhel-6/ghostscript=new,rhel-7/ghostscript=new,fedora-all/ghostscript=new,openshift-enterprise-2/ghostscript=new |
| Cedric Buissart | 2016-10-07 08:49:10 UTC | CC | abhgupta, dmcphers, jialiu, jokerman, kseifried, lmeyer, mmccomas, tiwillia | |
| Cedric Buissart | 2016-10-12 15:21:11 UTC | Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=new,rhel-6/ghostscript=new,rhel-7/ghostscript=new,fedora-all/ghostscript=new,openshift-enterprise-2/ghostscript=new | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=affected,fedora-all/ghostscript=affected,openshift-enterprise-2/ghostscript=notaffected |
| Cedric Buissart | 2016-10-12 15:26:57 UTC | Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=affected,fedora-all/ghostscript=affected,openshift-enterprise-2/ghostscript=notaffected | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=affected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,fedora-all/ghostscript=affected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,openshift-enterprise-2/ghostscript=notaffected |
| Cedric Buissart | 2016-10-20 13:04:00 UTC | Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=affected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,fedora-all/ghostscript=affected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,openshift-enterprise-2/ghostscript=notaffected | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=notaffected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,fedora-all/ghostscript=notaffected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,openshift-enterprise-2/ghostscript=notaffected |
| Cedric Buissart | 2016-10-20 13:08:44 UTC | Status | NEW | CLOSED |
| Resolution | --- | NOTABUG | ||
| Last Closed | 2016-10-20 09:08:44 UTC | |||
| Norman Sardella | 2016-10-21 10:45:43 UTC | CC | sardella | |
| Yasuhiro Ozone | 2016-10-24 03:57:22 UTC | CC | yozone | |
| Product Security DevOps Team | 2019-09-29 13:57:57 UTC | Whiteboard | impact=important,public=20160930,reported=20160930,source=researcher,cvss3=7.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L,cwe=CWE-20,rhel-5/ghostscript=notaffected,rhel-6/ghostscript=notaffected,rhel-7/ghostscript=notaffected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,fedora-all/ghostscript=notaffected/cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L,openshift-enterprise-2/ghostscript=notaffected |
Back to bug 1382294