Back to bug 1396383
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Andrej Nemec | 2016-11-18 08:55:21 UTC | Depends On | 1396387 | |
| Andrej Nemec | 2016-11-18 08:56:49 UTC | Blocks | 1396388 | |
| Norman Sardella | 2016-11-18 11:52:23 UTC | CC | sardella | |
| Salvatore Bonaccorso | 2016-11-18 13:35:54 UTC | CC | carnil | |
| Slawomir Czarko | 2016-11-21 10:58:52 UTC | CC | slawomir | |
| Dhiru Kholia | 2016-11-29 05:43:28 UTC | CC | dkholia | |
| Dhiru Kholia | 2016-11-29 05:54:37 UTC | Summary | CVE-2016-9401 bash: popd controlled use-after-free | CVE-2016-9401 bash: popd controlled free |
| Dhiru Kholia | 2016-11-29 05:59:34 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=3.3/AV:L/AC:M/Au:N/C:P/I:P/A:N,cvss3=4.4/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=new,rhel-6/bash=new,rhel-7/bash=new | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=3.3/AV:L/AC:M/Au:N/C:P/I:P/A:N,cvss3=4.4/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix |
| Dhiru Kholia | 2016-11-29 06:06:38 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=3.3/AV:L/AC:M/Au:N/C:P/I:P/A:N,cvss3=4.4/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix |
| Dhiru Kholia | 2016-11-29 06:09:46 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2016-11-29 01:09:46 UTC | |||
| Huzaifa S. Sidhpurwala | 2016-12-02 05:51:37 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=affected,rhel-7/bash=wontfix |
| Huzaifa S. Sidhpurwala | 2016-12-02 05:52:12 UTC | Depends On | 1400793 | |
| Huzaifa S. Sidhpurwala | 2016-12-02 05:54:30 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=affected,rhel-7/bash=wontfix | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix |
| Huzaifa S. Sidhpurwala | 2016-12-02 05:56:37 UTC | Blocks | 1386080 | |
| Kamil Dudka | 2016-12-07 17:06:09 UTC | Flags | needinfo?(dkholia) | |
| Dhiru Kholia | 2016-12-08 09:20:28 UTC | Status | CLOSED | NEW |
| Resolution | WONTFIX | --- | ||
| Flags | needinfo?(dkholia) | |||
| Keywords | Reopened | |||
| Martin Kyral | 2017-02-13 12:42:01 UTC | CC | mkyral | |
| Dhiru Kholia | 2017-03-02 08:40:47 UTC | Doc Text | A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash, resulting in a local denial of service limited to a specific bash session. | |
| Eric Christensen | 2017-03-02 13:33:12 UTC | CC | sparks | |
| Eric Christensen | 2017-03-02 18:48:35 UTC | Doc Text | A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash, resulting in a local denial of service limited to a specific bash session. | A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash resulting in a local denial of service limited to a specific bash session. |
| Martin Kyral | 2017-03-06 16:53:34 UTC | CC | security-response-team | |
| Flags | needinfo?(security-response-team) | |||
| Dhiru Kholia | 2017-03-07 09:15:31 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=wontfix,rhel-7/bash=wontfix | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=affected,rhel-7/bash=affected |
| Dhiru Kholia | 2017-03-07 09:18:47 UTC | Depends On | 1429838 | |
| Dhiru Kholia | 2017-03-07 09:20:29 UTC | Flags | needinfo?(security-response-team) | |
| Dominik Mierzejewski | 2017-07-28 11:48:30 UTC | CC | dominik.mierzejewski | |
| Eric Christensen | 2018-02-02 19:42:08 UTC | CC | sparks | |
| PnT Account Manager | 2018-03-29 22:02:01 UTC | CC | dkholia | |
| Product Security DevOps Team | 2019-06-08 03:02:18 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-11-29 06:09:46 UTC | 2019-06-08 03:02:18 UTC | ||
| Product Security DevOps Team | 2019-09-29 14:00:54 UTC | Whiteboard | impact=low,public=20161117,reported=20161117,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-416,fedora-all/bash=affected,rhel-5/bash=wontfix,rhel-6/bash=affected,rhel-7/bash=affected |
Back to bug 1396383