Back to bug 921335
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Kurt Seifried | 2013-03-14 03:02:16 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2013-03-14 03:02:16 UTC | Doc Type | --- | Bug Fix |
| Kurt Seifried | 2013-03-14 03:02:32 UTC | CC | bkearney, bleanhar, ccoleman, cpelland, dajohnso, dmcphers, jeckersb, jialiu, jomara, lmeyer, mmccune, morazi msuchy, sclewis, tkramer | |
| Kurt Seifried | 2013-03-14 03:29:23 UTC | Blocks | 921344 | |
| Kurt Seifried | 2013-03-14 03:32:10 UTC | Blocks | 921347 | |
| Kurt Seifried | 2013-03-14 03:33:10 UTC | Blocks | 921348 | |
| Kurt Seifried | 2013-03-14 03:57:17 UTC | Depends On | 921352 | |
| Kurt Seifried | 2013-03-14 03:57:20 UTC | Depends On | 921355 | |
| Kurt Seifried | 2013-03-14 03:59:33 UTC | Depends On | 921358 | |
| Kurt Seifried | 2013-03-14 04:02:46 UTC | Depends On | 921361 | |
| Jan Lieskovsky | 2013-03-15 09:13:12 UTC | CC | bkabrda, jlieskov, vondruch | |
| Tim Kramer | 2013-03-15 13:49:19 UTC | CC | tdawson | |
| Kurt Seifried | 2013-03-18 05:31:59 UTC | Attachment #710233 Attachment is obsolete | 0 | 1 |
| Kurt Seifried | 2013-03-18 05:32:28 UTC | Attachment #710234 Attachment is obsolete | 0 | 1 |
| Kurt Seifried | 2013-03-18 05:33:07 UTC | Attachment #710235 Attachment is obsolete | 0 | 1 |
| Kurt Seifried | 2013-03-18 05:33:53 UTC | Attachment #710236 Attachment is obsolete | 0 | 1 |
| Kurt Seifried | 2013-03-19 03:16:04 UTC | Whiteboard | impact=moderate,public=no,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected |
| Kurt Seifried | 2013-03-19 03:16:09 UTC | Summary | EMBARGOED CVE-2013-1857 rubygem-actionpack: sanitize_protocol: XSS Vulnerability in the helper of Ruby on Rails | CVE-2013-1857 rubygem-actionpack: sanitize_protocol: XSS Vulnerability in the helper of Ruby on Rails |
| Kurt Seifried | 2013-03-19 03:16:14 UTC | Group | security, qe_staff | |
| Jan Lieskovsky | 2013-03-21 14:13:56 UTC | Depends On | 924297 | |
| Jan Lieskovsky | 2013-03-21 14:14:20 UTC | Depends On | 924298 | |
| Kurt Seifried | 2013-03-23 00:58:45 UTC | Blocks | 925747 | |
| Tomas Hoger | 2013-06-07 08:02:29 UTC | Fixed In Version | rubygem-actionpack 3.1.12, rubygem-actionpack 3.2.13 | |
| Kurt Seifried | 2013-07-26 06:16:49 UTC | Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected |
| Kurt Seifried | 2013-08-10 03:39:15 UTC | Depends On | 995658 | |
| Garth Mollett | 2013-11-15 06:15:26 UTC | Blocks | 1028279 | |
| Garth Mollett | 2013-11-15 06:19:01 UTC | Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected,rhn_satellite_6/ruby193-rubygem-actionpack=affected |
| Garth Mollett | 2013-11-15 06:19:29 UTC | CC | katello-bugs | |
| Garth Mollett | 2013-11-15 06:21:03 UTC | Depends On | 1030779 | |
| Kurt Seifried | 2014-06-03 05:47:36 UTC | Blocks | 1000138 | |
| John Skeoch | 2014-06-18 07:58:08 UTC | CC | tkramer | mmcgrath |
| Kurt Seifried | 2014-10-28 21:26:24 UTC | Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/rubygem-actionpack=affected,rhn_satellite_6/ruby193-rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=affected,rhn_satellite_6/ruby193-rubygem-actionpack=affected |
| Kurt Seifried | 2014-10-28 23:12:26 UTC | Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=affected,rhn_satellite_6/ruby193-rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=wontfix,rhn_satellite_6/ruby193-rubygem-actionpack=affected |
| John Skeoch | 2014-11-09 22:57:00 UTC | CC | jomara | athomas |
| Martin Prpič | 2014-11-14 16:20:25 UTC | Doc Text | A cross-site scripting (XSS) flaw was found in Action Pack. A remote attacker could use this flaw to conduct XSS attacks against users of an application using Action Pack. | |
| Kurt Seifried | 2014-11-18 20:50:15 UTC | Depends On | 1165372 | |
| Kurt Seifried | 2014-11-18 20:50:20 UTC | Depends On | 1165373 | |
| Kurt Seifried | 2015-01-17 05:34:02 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2015-01-17 00:34:02 UTC | |||
| Ján Rusnačko | 2015-01-19 07:35:07 UTC | CC | jrusnack | |
| Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=wontfix,rhn_satellite_6/ruby193-rubygem-actionpack=affected | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=wontfix,rhn_satellite_6/ruby193-rubygem-actionpack=affected,cwe=CWE-79 | ||
| Product Security DevOps Team | 2019-09-29 13:01:57 UTC | Whiteboard | impact=moderate,public=20130318,reported=20130313,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,cloudformscommon-1/rubygem-actionpack=wontfix,sam-1/rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,openshift-1/rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/rubygem-actionpack=wontfix,rhn_satellite_6/ruby193-rubygem-actionpack=affected,cwe=CWE-79 |
Back to bug 921335