← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to active/CVE-2012-0391

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
active/CVE-2012-0391
1
 
Candidate: CVE-2012-0391
2
 
PublicDate: 2012-01-08
3
 
References:
4
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0391
5
 
 http://struts.apache.org/2.x/docs/s2-008.html
6
 
Description:
7
 
 The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets
8
 
 parameter values as OGNL expressions during certain exception handling for
9
 
 mismatched data types of properties, which allows remote attackers to
10
 
 execute arbitrary Java code via a crafted parameter.
11
 
Ubuntu-Description:
12
 
Notes:
13
 
Bugs:
14
 
 https://issues.apache.org/jira/browse/WW-3668
15
 
Priority: medium
16
 
Discovered-by:
17
 
Assigned-to:
18
 
 
19
 
Patches_libstruts1.2-java:
20
 
upstream_libstruts1.2-java: released (2.2.3.1)
21
 
hardy_libstruts1.2-java: ignored (reached end-of-life)
22
 
lucid_libstruts1.2-java: ignored (reached end-of-life)
23
 
maverick_libstruts1.2-java: ignored (reached end-of-life)
24
 
natty_libstruts1.2-java: ignored (reached end-of-life)
25
 
oneiric_libstruts1.2-java: ignored (reached end-of-life)
26
 
precise_libstruts1.2-java: ignored (reached end-of-life)
27
 
precise/esm_libstruts1.2-java: DNE (precise was needed)
28
 
quantal_libstruts1.2-java: ignored (reached end-of-life)
29
 
raring_libstruts1.2-java: ignored (reached end-of-life)
30
 
saucy_libstruts1.2-java: ignored (reached end-of-life)
31
 
trusty_libstruts1.2-java: needed
32
 
utopic_libstruts1.2-java: ignored (reached end-of-life)
33
 
vivid_libstruts1.2-java: DNE
34
 
vivid/stable-phone-overlay_libstruts1.2-java: DNE
35
 
vivid/ubuntu-core_libstruts1.2-java: DNE
36
 
wily_libstruts1.2-java: DNE
37
 
xenial_libstruts1.2-java: DNE
38
 
yakkety_libstruts1.2-java: DNE
39
 
zesty_libstruts1.2-java: DNE
40
 
artful_libstruts1.2-java: DNE
41
 
bionic_libstruts1.2-java: DNE
42
 
devel_libstruts1.2-java: DNE