Back to bug 799275
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2012-03-02 10:55:28 UTC | CC | bkabrda, kanarip, katello-internal, lutter, mastahnke, mmorsi, sseago, vondruch | |
| Jan Lieskovsky | 2012-03-02 11:25:42 UTC | Depends On | 799279 | |
| Jan Lieskovsky | 2012-03-02 12:04:26 UTC | Blocks | 755014 | |
| Kurt Seifried | 2012-03-03 00:32:17 UTC | Summary | rubygem-actionpack: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) | CVE-2012-1098 rubygem-actionpack: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) |
| Alias | CVE-2012-1098 | |||
| Jan Lieskovsky | 2012-03-05 13:17:19 UTC | Summary | CVE-2012-1098 rubygem-actionpack: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) | CVE-2012-1098 rubygem-actionpack, rubygem-activerecord: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) |
| Jan Lieskovsky | 2012-03-05 13:30:49 UTC | Summary | CVE-2012-1098 rubygem-actionpack, rubygem-activerecord: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) | CVE-2012-1098 rubygem-actionpack: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) |
| Jan Lieskovsky | 2012-03-05 13:39:37 UTC | Summary | CVE-2012-1098 rubygem-actionpack: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) | CVE-2012-1098 rubygem-actionpack, rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) |
| Jan Lieskovsky | 2012-03-05 15:20:10 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected,epel-5/rubygem-actionpack=notaffected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected,epel-5/rubygem-actionpack=notaffected fedora-16/rubygem-activesupport=affected,cloudformscommon-1/rubygem-activesupport=affected,fedora-15/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected |
| Jan Lieskovsky | 2012-03-05 15:24:51 UTC | Depends On | 800000 | |
| Jan Lieskovsky | 2012-03-05 15:52:25 UTC | Depends On | 800015 | |
| Jan Lieskovsky | 2012-03-05 15:53:49 UTC | Depends On | 800018 | |
| Tomas Hoger | 2012-03-06 09:41:47 UTC | Summary | CVE-2012-1098 rubygem-actionpack, rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) | CVE-2012-1098 rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe) |
| Tomas Hoger | 2012-03-06 09:49:34 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected,epel-5/rubygem-actionpack=notaffected fedora-16/rubygem-activesupport=affected,cloudformscommon-1/rubygem-activesupport=affected,fedora-15/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected |
| Kurt Seifried | 2012-04-02 18:53:02 UTC | Blocks | 767033 | |
| Kurt Seifried | 2012-04-03 17:22:26 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-express-1/ruby=affected |
| Kurt Seifried | 2012-04-03 17:22:36 UTC | CC | tkramer | |
| Kurt Seifried | 2012-04-03 17:30:52 UTC | Depends On | 809588 | |
| Tomas Hoger | 2012-04-10 09:15:12 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-express-1/ruby=affected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-express-1/rubygem-activesupport=affected |
| Kurt Seifried | 2012-05-08 16:46:36 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-express-1/rubygem-activesupport=affected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-1/rubygem-activesupport=affected |
| Tomas Hoger | 2012-08-24 15:24:30 UTC | Status | NEW | CLOSED |
| Fixed In Version | rubygem-activesupport 3.0.12, rubygem-activesupport 3.1.4, rubygem-activesupport 3.2.2 | |||
| Resolution | --- | ERRATA | ||
| Last Closed | 2012-08-24 11:24:30 UTC | |||
| Tomas Hoger | 2012-08-24 15:34:32 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,cloudformscommon-1/rubygem-actionpack=affected,fedora-15/rubygem-activesupport=notaffected fedora-16/rubygem-activesupport=affected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,openshift-1/rubygem-activesupport=affected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,sam-1/rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected fedora-all/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected |
| Ján Rusnačko | 2016-03-04 11:41:48 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,sam-1/rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,fedora-all/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,sam-1/rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,fedora-all/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,cwe=CWE-79[auto] |
| Product Security DevOps Team | 2019-09-29 12:50:57 UTC | Whiteboard | impact=moderate,public=20120301,reported=20120302,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cloudformscommon-1/rubygem-activesupport=affected,sam-1/rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,fedora-all/rubygem-activesupport=notaffected,epel-5/rubygem-activesupport=notaffected,epel-6/rubygem-activesupport=notaffected,cwe=CWE-79[auto] |
Back to bug 799275