Bug 620751 (CVE-2010-2796)
| Summary: | CVE-2010-2796 php-pear-CAS: XSS in proxy mode (PHPCAS-67) | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | fedora, gwync |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2015-08-22 06:12:39 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 620753, 620759, 620772 | ||
| Bug Blocks: | |||
|
Description
Jan Lieskovsky
2010-08-03 12:07:56 UTC
This flaw affects the versions of the php-pear-CAS package, as shipped with Fedora release of 12 and 13. Please fix. This issue affects the versions of the glpi package, as shipped with Fedora release of 12 and 13. Please fix. This issue affects the versions of the moodle package, as shipped with Fedora release of 12 and 13. This issue affects the versions of the moodle package, as shipped within EPEL-4 and EPEL-5 repositories. Please fix. Created php-pear-CAS tracking bugs for this issue Affects: fedora-all [bug 620753] Created glpi tracking bugs for this issue Affects: fedora-all [bug 620759] Created moodle tracking bugs for this issue Affects: fedora-all [bug 620772] glpi is not affected as it (now) uses the system version of phpCas. |