← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to active/CVE-2012-6532

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
active/CVE-2012-6532
1
 
Candidate: CVE-2012-6532
2
 
PublicDate: 2013-02-13
3
 
References:
4
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6532
5
 
 http://framework.zend.com/security/advisory/ZF2012-02
6
 
Description:
7
 
 (1) Zend_Dom, (2) Zend_Feed, (3) Zend_Soap, and (4) Zend_XmlRpc in Zend
8
 
 Framework 1.x before 1.11.13 and 1.12.x before 1.12.0 allow remote
9
 
 attackers to cause a denial of service (CPU consumption) via recursive or
10
 
 circular references in an XML entity definition in an XML DOCTYPE
11
 
 declaration, aka an XML Entity Expansion (XEE) attack.
12
 
Ubuntu-Description:
13
 
Notes:
14
 
Bugs:
15
 
Priority: medium
16
 
Discovered-by: 
17
 
Assigned-to:
18
 
 
19
 
Patches_zend-framework:
20
 
upstream_zend-framework: released (1.11.13, 1.12.0)
21
 
hardy_zend-framework: ignored (reached end-of-life)
22
 
lucid_zend-framework: ignored (reached end-of-life)
23
 
oneiric_zend-framework: ignored (reached end-of-life)
24
 
precise_zend-framework: ignored (reached end-of-life)
25
 
precise/esm_zend-framework: DNE (precise was needed)
26
 
quantal_zend-framework: ignored (reached end-of-life)
27
 
raring_zend-framework: ignored (reached end-of-life)
28
 
saucy_zend-framework: ignored (reached end-of-life)
29
 
trusty_zend-framework: needed
30
 
utopic_zend-framework: ignored (reached end-of-life)
31
 
vivid_zend-framework: ignored (reached end-of-life)
32
 
vivid/stable-phone-overlay_zend-framework: DNE
33
 
vivid/ubuntu-core_zend-framework: DNE
34
 
wily_zend-framework: ignored (reached end-of-life)
35
 
xenial_zend-framework: needed
36
 
yakkety_zend-framework: ignored (reached end-of-life)
37
 
zesty_zend-framework: DNE
38
 
artful_zend-framework: DNE
39
 
bionic_zend-framework: DNE
40
 
devel_zend-framework: DNE
41
 
 
42
 
Patches_zendframework:
43
 
upstream_zendframework: needed
44
 
precise_zendframework: DNE
45
 
precise/esm_zendframework: DNE
46
 
trusty_zendframework: DNE
47
 
vivid/stable-phone-overlay_zendframework: DNE
48
 
vivid/ubuntu-core_zendframework: DNE
49
 
wily_zendframework: DNE
50
 
xenial_zendframework: DNE
51
 
yakkety_zendframework: DNE
52
 
zesty_zendframework: not-affected
53
 
artful_zendframework: not-affected
54
 
bionic_zendframework: not-affected
55
 
devel_zendframework: not-affected