Bug 1252567 (CVE-2015-5179) - CVE-2015-5179 FreeIPA: non-printable characters aren't checked in every case of user data
Summary: CVE-2015-5179 FreeIPA: non-printable characters aren't checked in every case ...
Keywords:
Status: NEW
Alias: CVE-2015-5179
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=moderate,public=20150722,repor...
Depends On: 1254205
Blocks: 1252568
TreeView+ depends on / blocked
 
Reported: 2015-08-11 17:42 UTC by Kurt Seifried
Modified: 2019-06-08 20:42 UTC (History)
7 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Kurt Seifried 2015-08-11 17:42:12 UTC
alich in the FreeIPA bug tracker reported:

A number of non printable strings can cause FreeIPA to improperly display user data, potentially modifying what is shown to an administrator.

External Reference:
https://fedorahosted.org/freeipa/ticket/5153

Comment 1 Stefan Cornelius 2015-08-17 12:33:37 UTC
Created freeipa tracking bugs for this issue:

Affects: fedora-all [bug 1254205]


Note You need to log in before you can comment on or make changes to this bug.