← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to retired/CVE-2013-2296

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
retired/CVE-2013-2296
1
 
Candidate: CVE-2013-2296
2
 
PublicDate: 2013-09-17
3
 
References:
4
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2296
5
 
 https://eucalyptus.atlassian.net/browse/EUCA-3074
6
 
Description:
7
 
 Walrus in Eucalyptus before 3.2.2 does not verify authorization for the
8
 
 GetBucketLoggingStatus, SetBucketLoggingStatus, and
9
 
 SetBucketVersioningStatus bucket operations, which allows remote
10
 
 authenticated users to bypass intended restrictions on (1) modifying the
11
 
 logging setting, (2) modifying the versioning setting, or (3) accessing
12
 
 activity logs via a request.
13
 
Ubuntu-Description:
14
 
Notes:
15
 
Bugs:
16
 
Priority: medium
17
 
Discovered-by:
18
 
Assigned-to:
19
 
 
20
 
Patches_eucalyptus:
21
 
upstream_eucalyptus: released (3.2.2)
22
 
hardy_eucalyptus: DNE
23
 
lucid_eucalyptus: ignored (reached end-of-life)
24
 
oneiric_eucalyptus: ignored (reached end-of-life)
25
 
precise_eucalyptus: ignored (reached end-of-life)
26
 
precise/esm_eucalyptus: DNE (precise was needed)
27
 
quantal_eucalyptus: DNE
28
 
raring_eucalyptus: DNE
29
 
saucy_eucalyptus: DNE
30
 
trusty_eucalyptus: DNE
31
 
utopic_eucalyptus: DNE
32
 
vivid_eucalyptus: DNE
33
 
vivid/stable-phone-overlay_eucalyptus: DNE
34
 
vivid/ubuntu-core_eucalyptus: DNE
35
 
wily_eucalyptus: DNE
36
 
xenial_eucalyptus: DNE
37
 
yakkety_eucalyptus: DNE
38
 
zesty_eucalyptus: DNE
39
 
devel_eucalyptus: DNE