1
Candidate: CVE-2013-0246
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0246
5
http://www.openwall.com/lists/oss-security/2013/01/30
6
http://drupal.org/SA-CORE-2013-001
8
The Image module in Drupal 7.x before 7.19, when a private file system is
9
used, does not properly restrict access to derivative images, which allows
10
remote attackers to read derivative images of otherwise restricted images
11
via unspecified vectors.
20
upstream_drupal6: released (6.28)
22
lucid_drupal6: ignored (reached end-of-life)
23
oneiric_drupal6: ignored (reached end-of-life)
24
precise_drupal6: ignored (reached end-of-life)
25
precise/esm_drupal6: DNE (precise was needed)
26
quantal_drupal6: ignored (reached end-of-life)
27
raring_drupal6: ignored (reached end-of-life)
32
vivid/stable-phone-overlay_drupal6: DNE
33
vivid/ubuntu-core_drupal6: DNE
41
upstream_drupal7: released (7.19)
45
precise_drupal7: ignored (reached end-of-life)
46
precise/esm_drupal7: DNE (precise was needed)
47
quantal_drupal7: ignored (reached end-of-life)
48
raring_drupal7: not-affected (7.22-1)
49
saucy_drupal7: not-affected (7.22-1)
50
trusty_drupal7: not-affected (7.22-1)
51
utopic_drupal7: not-affected (7.22-1)
52
vivid_drupal7: not-affected (7.22-1)
53
vivid/stable-phone-overlay_drupal7: DNE
54
vivid/ubuntu-core_drupal7: DNE
55
wily_drupal7: not-affected (7.22-1)
56
xenial_drupal7: not-affected (7.22-1)
57
yakkety_drupal7: not-affected (7.22-1)
58
zesty_drupal7: not-affected (7.22-1)
59
devel_drupal7: not-affected (7.22-1)