[Bug 198106] New: CVE-2006-3458: Zope local information disclosure
bugzilla at redhat.com
bugzilla at redhat.com
Sun Jul 9 18:59:28 UTC 2006
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=198106
Summary: CVE-2006-3458: Zope local information disclosure
Product: Fedora Extras
Version: fc5
Platform: All
URL: http://www.zope.org/Products/Zope/Hotfix-2006-07-
05/Hotfix-20060705/README.txt
OS/Version: Linux
Status: NEW
Severity: normal
Priority: normal
Component: zope
AssignedTo: gauret at free.fr
ReportedBy: ville.skytta at iki.fi
QAContact: extras-qa at fedoraproject.org
CC: extras-qa at fedoraproject.org,fedora-security-
list at redhat.com
Unspecified vulnerability in Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to
2.9.3 (Zope2) allows local users to obtain sensitive information via unknown
attack vectors related to the docutils module and "restructured text".
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-3458
http://www.zope.org/Products/Zope/Hotfix-2006-07-05/Hotfix-20060705/README.txt
Based on the version numbers, all FC-3+ appear to be vulnerable.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the security
mailing list