1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
PublicDate: 2005-10-05
Candidate: CVE-2005-3139
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3139
Description:
Bugzilla 2.19.1 through 2.20rc2 and 2.21, with user matching turned on in
substring mode, allows attackers to list all users whose names match an
arbitrary substring, even when the usevisibilitygroups parameter is set.
Ubuntu-Description:
Notes:
Bugs:
dapper_bugzilla: not-affected
edgy_bugzilla: not-affected
feisty_bugzilla: not-affected
gutsy_bugzilla: not-affected
devel_bugzilla: not-affected
upstream_bugzilla: released (2.20)
|