Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:12.3:Update
patchinfo.2401
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.2401
<patchinfo incident="Update"> <binary>webyast-base</binary> <binary>webyast-base-branding-default</binary> <binary>webyast-base-testsuite</binary> <packager>lslezak</packager> <issue tracker="cve" id="CVE-2013-3709"></issue> <issue tracker="bnc" id="851116">VUL-0: CVE-2013-3709: webyast: local privilege escalation via secret rails tokens execution</issue> <category>security</category> <rating>important</rating> <summary>Fixes a local vulnerability</summary> <description>Fixed CVE-2013-3709: make the secret token file (secret_token.rb) readable only for the webyast user to avoid forging the session cookie (bnc#851116)</description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor