[Bug 858883] Re: "Management Parameters" (for example a system) which can be set in the web interface can result in arbitrary code execution on the host due to the use of yaml.loads instead of yaml.safe_loads in item.py on line 248:
Launchpad Bug Tracker
858883 at bugs.launchpad.net
Fri Nov 11 16:28:22 UTC 2011
** Branch linked: lp:~racb/ubuntu/oneiric/cobbler/858878_858883
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to cobbler in Ubuntu.
https://bugs.launchpad.net/bugs/858883
Title:
"Management Parameters" (for example a system) which can be set in the
web interface can result in arbitrary code execution on the host due
to the use of yaml.loads instead of yaml.safe_loads in item.py on line
248:
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cobbler/+bug/858883/+subscriptions
More information about the Ubuntu-server-bugs
mailing list