[Bug 962708] New: CVE-2012-6143 perl-Spoon (Spoon::Cookie): Do not run Storable::thaw() on arbitrary untrusted user input [epel-6]

bugzilla at redhat.com bugzilla at redhat.com
Tue May 14 10:00:55 UTC 2013


Product: Fedora EPEL
https://bugzilla.redhat.com/show_bug.cgi?id=962708

            Bug ID: 962708
           Summary: CVE-2012-6143 perl-Spoon (Spoon::Cookie): Do not run
                    Storable::thaw() on arbitrary untrusted user input
                    [epel-6]
           Product: Fedora EPEL
           Version: el6
         Component: perl-Spoon
          Keywords: Security, SecurityTracking
          Severity: medium
          Priority: medium
          Assignee: steve at silug.org
          Reporter: jlieskov at redhat.com
        QA Contact: extras-qa at fedoraproject.org
                CC: perl-devel at lists.fedoraproject.org, steve at silug.org
            Blocks: 962705 (CVE-2012-6143)
          Category: ---


This is an automatically created tracking bug!  It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.

For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.

For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs

When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s).  This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.

Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.

epel-6 tracking bug for perl-Spoon: see blocks bug list for full details of the
security issue(s).

[bug automatically created by: add-tracking-bugs]

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=OAeSnqF8OC&a=cc_unsubscribe



More information about the perl-devel mailing list