LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

request-tracker: multiple vulnerabilities

Package(s):request-tracker3.8 CVE #(s):CVE-2012-4730 CVE-2012-4732 CVE-2012-4734 CVE-2012-4735 CVE-2012-4884
Created:October 29, 2012 Updated:November 8, 2012
Description: From the Debian advisory:

CVE-2012-4730: Authenticated users can add arbitrary headers or content to mail generated by RT.

CVE-2012-4732: A CSRF vulnerability may allow attackers to toggle ticket bookmarks.

CVE-2012-4734: If users follow a crafted URI and log in to RT, they may trigger actions which would ordinarily blocked by the CSRF prevention logic.

CVE-2012-4735: Several different vulnerabilities in GnuPG processing allow attackers to cause RT to improperly sign outgoing email.

CVE-2012-4884: If GnuPG support is enabled, authenticated users attackers can create arbitrary files as the web server user, which may enable arbitrary code execution.

Alerts:
Debian DSA-2567-1 2012-10-26
Fedora FEDORA-2012-17218 2012-11-08
Fedora FEDORA-2012-17174 2012-11-08
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds