[Bug 1048835] Re: [Quantal] xmlrpc-c is vulnerable to CVE-2012-0876 and CVE-2012-1148
Micah Gersten
launchpad at micahscomputing.com
Tue Sep 11 17:46:17 UTC 2012
Taking a look
** Also affects: xmlrpc-c (Ubuntu Quantal)
Importance: Medium
Status: Confirmed
** Changed in: xmlrpc-c (Ubuntu Quantal)
Status: Confirmed => In Progress
** Changed in: xmlrpc-c (Ubuntu Quantal)
Assignee: (unassigned) => Micah Gersten (micahg)
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1048835
Title:
[Quantal] xmlrpc-c is vulnerable to CVE-2012-0876 and CVE-2012-1148
Status in “xmlrpc-c” package in Ubuntu:
In Progress
Status in “xmlrpc-c” source package in Quantal:
In Progress
Bug description:
XML-RPC for C and C++ could be made to cause a denial of service by
consuming excessive CPU and memory resources.
Here is the USN for the stable releases:
http://www.ubuntu.com/usn/usn-1527-2/
and the security team CVE tracker links:
http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-0876
http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-1148
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/xmlrpc-c/+bug/1048835/+subscriptions
More information about the Ubuntu-sponsors
mailing list