Bug 1546886 (CVE-2018-5123)

Summary: CVE-2018-5123 bugzilla: CSRF in report.cgi allows to extract confidential information from a bug
Product: [Other] Security Response Reporter: Laura Pardo <lpardo>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: itamar, perl-devel
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: bugzilla 4.4.13, bugzilla 5.0.4 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-10-21 19:55:06 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1546887    
Bug Blocks:    

Description Laura Pardo 2018-02-19 22:09:41 UTC 
A flaw was found in Bugzilla Bugzilla 2.16rc1 to 4.4.12, 4.5.1 to 5.0.3. A Cross-Site Request Forgery (CSRF) vulnerability in report.cgi would allow a third-party site to extract confidential information from a bug the victim had access to.


References:
https://packetstormsecurity.com/files/146473/bugzilla45-xsrf.txt
https://bugzilla.mozilla.org/show_bug.cgi?id=1433400

Patch:
https://bugzilla.mozilla.org/attachment.cgi?id=8950824&action=edit [4.4]
https://bugzilla.mozilla.org/attachment.cgi?id=8951341&action=edit [5.0]
Comment 1 Laura Pardo 2018-02-19 22:10:09 UTC 
Created bugzilla tracking bugs for this issue:

Affects: epel-6 [bug 1546887]