← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to retired/CVE-2012-4732

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
retired/CVE-2012-4732
1
 
Candidate: CVE-2012-4732
2
 
PublicDate: 2012-11-11
3
 
References:
4
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4732
5
 
 http://www.debian.org/security/2012/dsa-2567
6
 
Description:
7
 
 Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT)
8
 
 3.8.12 and other versions before 3.8.15, and 4.0.6 and other versions
9
 
 before 4.0.8, allows remote attackers to hijack the authentication of users
10
 
 for requests that toggle ticket bookmarks.
11
 
Ubuntu-Description:
12
 
Notes:
13
 
Bugs:
14
 
Priority: medium
15
 
Discovered-by:
16
 
Assigned-to:
17
 
 
18
 
Patches_request-tracker4:
19
 
upstream_request-tracker4: released (4.0.7-2)
20
 
hardy_request-tracker4: DNE
21
 
lucid_request-tracker4: DNE
22
 
oneiric_request-tracker4: ignored (reached end-of-life)
23
 
precise_request-tracker4: ignored (reached end-of-life)
24
 
precise/esm_request-tracker4: DNE (precise was needed)
25
 
quantal_request-tracker4: ignored (reached end-of-life)
26
 
raring_request-tracker4: not-affected (4.0.7-2)
27
 
saucy_request-tracker4: not-affected (4.0.7-2)
28
 
trusty_request-tracker4: not-affected (4.0.7-2)
29
 
utopic_request-tracker4: not-affected (4.0.7-2)
30
 
vivid_request-tracker4: not-affected (4.0.7-2)
31
 
vivid/stable-phone-overlay_request-tracker4: DNE
32
 
vivid/ubuntu-core_request-tracker4: DNE
33
 
wily_request-tracker4: not-affected (4.0.7-2)
34
 
xenial_request-tracker4: not-affected (4.0.7-2)
35
 
yakkety_request-tracker4: not-affected (4.0.7-2)
36
 
zesty_request-tracker4: not-affected (4.0.7-2)
37
 
devel_request-tracker4: not-affected (4.0.7-2)
38
 
 
39
 
Patches_request-tracker3.8:
40
 
upstream_request-tracker3.8: released (3.8.8-7+squeeze6)
41
 
hardy_request-tracker3.8: DNE
42
 
lucid_request-tracker3.8: released (3.8.7-1ubuntu2.3)
43
 
oneiric_request-tracker3.8: released (3.8.10-1ubuntu0.1)
44
 
precise_request-tracker3.8: released (3.8.11-1ubuntu0.1)
45
 
precise/esm_request-tracker3.8: DNE (precise was released [3.8.11-1ubuntu0.1])
46
 
quantal_request-tracker3.8: DNE
47
 
raring_request-tracker3.8: DNE
48
 
saucy_request-tracker3.8: DNE
49
 
trusty_request-tracker3.8: DNE
50
 
utopic_request-tracker3.8: DNE
51
 
vivid_request-tracker3.8: DNE
52
 
vivid/stable-phone-overlay_request-tracker3.8: DNE
53
 
vivid/ubuntu-core_request-tracker3.8: DNE
54
 
wily_request-tracker3.8: DNE
55
 
xenial_request-tracker3.8: DNE
56
 
yakkety_request-tracker3.8: DNE
57
 
zesty_request-tracker3.8: DNE
58
 
devel_request-tracker3.8: DNE