Bug 798353 (CVE-2012-1095)
Summary: | CVE-2012-1095 osc: Improper sanitization of terminal emulator escape sequences when displaying build log and build status | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | extras-orphan, karlthered, msuchy, saispo |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-07-18 07:04:06 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 799226, 799227 | ||
Bug Blocks: |
Description
Jan Lieskovsky
2012-02-28 17:50:48 UTC
CVE request: [2] http://www.openwall.com/lists/oss-security/2012/02/28/9 The CVE identifier of CVE-2012-1095 has been assigned to this issue: [3] http://www.openwall.com/lists/oss-security/2012/03/02/2 Once there is final upstream patch, please schedule updates for the versions, of the osc package, as shipped with Fedora 15, Fedora 16 and Fedora EPEL 6. Created osc tracking bugs for this issue Affects: fedora-all [bug 799226] Affects: epel-6 [bug 799227] |