Back to bug 895277
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Vincent Danen | 2013-01-14 23:48:29 UTC | CC | bkabrda, bkearney, bleanhar, cpelland, dajohnso, iboverma, jeckersb, jialiu, jneedle, jomara, kanarip, katello-bugs katello-internal, lmeyer, mastahnke, mcressma, mmccune, mmorsi, morazi, mrg-program-list, msuchy, rmillner, sclewis tkramer, vondruch | |
| Vincent Danen | 2013-01-14 23:49:56 UTC | Summary | rubygem-rack: infinite loop when parsing Content-Disposition header | rubygem-rack: two minor DoS condiitions (parsing Content-Disposition header, Rack::Auth::AbstractRequest) |
| Vincent Danen | 2013-01-14 23:55:59 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=affected,sam-1/rubygem-rack=affected | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=affected,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected |
| Vincent Danen | 2013-01-15 00:19:43 UTC | Blocks | 895284 | |
| Vincent Danen | 2013-01-15 00:21:55 UTC | Depends On | 895285 | |
| Vincent Danen | 2013-01-15 00:23:23 UTC | Depends On | 771152 | |
| Kurt Seifried | 2013-01-15 07:30:41 UTC | Summary | rubygem-rack: two minor DoS condiitions (parsing Content-Disposition header, Rack::Auth::AbstractRequest) | CVE-2012-6109 rubygem-rack: parsing Content-Disposition header DoS |
| Alias | CVE-2012-6109 | |||
| Kurt Seifried | 2013-01-15 07:47:39 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=affected,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=affected,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected |
| Kurt Seifried | 2013-01-15 07:54:19 UTC | Depends On | 895397 | |
| Kurt Seifried | 2013-01-15 07:55:58 UTC | Depends On | 895398 | |
| Kurt Seifried | 2013-01-15 07:57:59 UTC | Depends On | 895400 | |
| Kurt Seifried | 2013-01-15 08:00:14 UTC | Depends On | 895401 | |
| Eric Sammons | 2013-01-15 15:33:30 UTC | CC | esammons | |
| Jeff Needle | 2013-01-15 17:09:57 UTC | CC | jneedle | |
| Kurt Seifried | 2013-01-16 19:52:44 UTC | Blocks | 892883 | |
| Kurt Seifried | 2013-02-01 06:07:47 UTC | Blocks | 906653 | |
| Kurt Seifried | 2013-08-10 03:57:58 UTC | Depends On | 995680 | |
| John Skeoch | 2013-11-18 00:52:21 UTC | CC | rmillner | mfisher |
| John Skeoch | 2014-06-18 07:57:57 UTC | CC | tkramer | mmcgrath |
| Michael Stahnke | 2014-10-11 04:05:53 UTC | CC | mastahnke | |
| Kurt Seifried | 2014-10-28 21:22:43 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=affected,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected |
| Kurt Seifried | 2014-10-28 21:25:25 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=affected,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected |
| Kurt Seifried | 2014-10-28 23:13:39 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=affected | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=wontfix |
| John Skeoch | 2014-11-09 22:57:00 UTC | CC | jomara | athomas |
| Kurt Seifried | 2014-11-18 20:45:43 UTC | Depends On | 1165360 | |
| Kurt Seifried | 2014-11-24 16:25:31 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2014-11-24 11:25:31 UTC | |||
| Ján Rusnačko | 2014-11-25 10:22:26 UTC | CC | jrusnack | |
| Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=wontfix | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=wontfix,cwe=CWE-835 | ||
| Product Security DevOps Team | 2019-09-29 12:58:59 UTC | Whiteboard | impact=moderate,public=20120504,reported=20130114,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,fedora-all/rubygem-rack=affected,epel-all/rubygem-rack=affected,mrg-2/rubygem-rack=affected,openshift-1/rubygem-rack=affected,openshift-enterprise-1/rubygem-rack=wontfix,cloudformscommon-1/rubygem-rack=wontfix,sam-1/rubygem-rack=affected,openshift-enterprise-1/rubygem193-rack=wontfix,cwe=CWE-835 |
Back to bug 895277