Bug 582434 (CVE-2010-1160, CVE-2010-1161)
Summary: | CVE-2010-1160 CVE-2010-1161 nano: multiple file editing insecurities | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Vincent Danen <vdanen> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | bressers, cnoffsin, kdudka, rrajaram |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-09-03 12:01:32 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 582739, 582740 | ||
Bug Blocks: |
Description
Vincent Danen
2010-04-14 21:34:33 UTC
Created nano tracking bugs for this issue Affects: fedora-all [bug 582739] nano-2.0.9-6.fc12 has been submitted as an update for Fedora 12. http://admin.fedoraproject.org/updates/nano-2.0.9-6.fc12 nano-2.0.9-1.fc11 has been submitted as an update for Fedora 11. http://admin.fedoraproject.org/updates/nano-2.0.9-1.fc11 nano-2.2.4-1.fc13 has been submitted as an update for Fedora 13. http://admin.fedoraproject.org/updates/nano-2.2.4-1.fc13 The Red Hat Security Response Team has rated these issues as having low security impact, a future update may address these flaws. nano-2.2.4-1.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report. nano-2.0.9-1.fc11 has been pushed to the Fedora 11 stable repository. If problems still persist, please make note of it in this bug report. nano-2.0.9-6.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report. RHEL6 and RHEL5 bugs have been closed with a fix. CVE database is not updated Red Hat Enterprise Linux 6 had these issues corrected before its initial release. Therefore, there is no erratum to link from the CVE page. Red Hat Enterprise Linux 5 hasn't got these issues corrected. As this is Low impact issue, and Red Hat Enterprise Linux 5 is already in the Phase 3 of its life cycle, these issues are not expected to get corrected. Statement: This issue was corrected in Red Hat Enterprise Linux 6 prior to its initial release. Red Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Low security impact and is not currently planned to be addressed in future updates for this or earlier releases. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/. |