ID OPENVAS:867027 Type openvas Reporter Copyright (c) 2013 Greenbone Networks GmbH Modified 2018-02-03T00:00:00
Description
Check for the Version of ReviewBoard
###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for ReviewBoard FEDORA-2013-18931
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
if(description)
{
script_id(867027);
script_version("$Revision: 8650 $");
script_tag(name:"last_modification", value:"$Date: 2018-02-03 13:16:59 +0100 (Sat, 03 Feb 2018) $");
script_tag(name:"creation_date", value:"2013-10-29 11:15:35 +0530 (Tue, 29 Oct 2013)");
script_cve_id("CVE-2013-4410", "CVE-2013-4411", "CVE-2013-4409");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_name("Fedora Update for ReviewBoard FEDORA-2013-18931");
tag_insight = "Review Board is a powerful web-based code review tool that offers
developers an easy way to handle code reviews. It scales well from small
projects to large companies and offers a variety of tools to take much
of the stress and time out of the code review process.
";
tag_affected = "ReviewBoard on Fedora 19";
tag_solution = "Please Install the Updated Packages.";
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "solution" , value : tag_solution);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name: "FEDORA", value: "2013-18931");
script_xref(name: "URL" , value: "https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html");
script_tag(name: "summary" , value: "Check for the Version of ReviewBoard");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2013 Greenbone Networks GmbH");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
exit(0);
}
include("pkg-lib-rpm.inc");
release = get_kb_item("ssh/login/release");
res = "";
if(release == NULL){
exit(0);
}
if(release == "FC19")
{
if ((res = isrpmvuln(pkg:"ReviewBoard", rpm:"ReviewBoard~1.7.16~2.fc19", rls:"FC19")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
{"id": "OPENVAS:867027", "bulletinFamily": "scanner", "title": "Fedora Update for ReviewBoard FEDORA-2013-18931", "description": "Check for the Version of ReviewBoard", "published": "2013-10-29T00:00:00", "modified": "2018-02-03T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=867027", "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html", "2013-18931"], "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "type": "openvas", "lastseen": "2018-02-05T11:11:09", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Check for the Version of ReviewBoard", "edition": 1, "enchantments": {}, "hash": "774b4fd23fe3e182e4197372deb458c1a5faa8e7b2598ec1691f8966e56f5bfd", "hashmap": [{"hash": "81c292f8714e870db19b2340e56e8139", "key": "href"}, {"hash": "e20a1536f6bff4dbc36b3cef61da7717", "key": "modified"}, {"hash": "ee7323f9772dc2e45b55694775fc51f0", "key": "pluginID"}, {"hash": "a3bd416e2ec90f4f7139bd91167107c2", "key": "references"}, {"hash": "99858af287208ed577a999e6eef949b4", "key": "title"}, {"hash": "6a8e2b8f0670a371101cb1cc0187d41d", "key": "sourceData"}, {"hash": "1a99a5f9a50e5bac3b749d8558d5e46b", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "62785b235746c3c568ef76d06be02e50", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "89f6521403e555beb45c4e536fb31351", "key": "published"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "79bd89e511345607407a8d2d7c3c2162", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=867027", "id": "OPENVAS:867027", "lastseen": "2017-07-02T21:11:16", "modified": "2016-03-23T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "867027", "published": "2013-10-29T00:00:00", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html", "2013-18931"], "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for ReviewBoard FEDORA-2013-18931\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867027);\n script_version(\"$Revision: 2922 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-23 12:19:34 +0100 (Wed, 23 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 11:15:35 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2013-4410\", \"CVE-2013-4411\", \"CVE-2013-4409\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for ReviewBoard FEDORA-2013-18931\");\n\n tag_insight = \"Review Board is a powerful web-based code review tool that offers\ndevelopers an easy way to handle code reviews. It scales well from small\nprojects to large companies and offers a variety of tools to take much\nof the stress and time out of the code review process.\n\";\n\n tag_affected = \"ReviewBoard on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-18931\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html\");\n script_summary(\"Check for the Version of ReviewBoard\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"ReviewBoard\", rpm:\"ReviewBoard~1.7.16~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for ReviewBoard FEDORA-2013-18931", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:11:16"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Check for the Version of ReviewBoard", "edition": 2, "enchantments": {"score": {"modified": "2017-07-25T10:51:58", "value": 7.5}}, "hash": "822a7ed37fc1d2f60d90f5692c39da8590339c35046121026d9a2db4ebf78319", "hashmap": [{"hash": "81c292f8714e870db19b2340e56e8139", "key": "href"}, {"hash": "ee7323f9772dc2e45b55694775fc51f0", "key": "pluginID"}, {"hash": "a3bd416e2ec90f4f7139bd91167107c2", "key": "references"}, {"hash": "99858af287208ed577a999e6eef949b4", "key": "title"}, {"hash": "1a99a5f9a50e5bac3b749d8558d5e46b", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d31c4bbb9f012cecee16ba9e3811655f", "key": "sourceData"}, {"hash": "62785b235746c3c568ef76d06be02e50", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "89f6521403e555beb45c4e536fb31351", "key": "published"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "79bd89e511345607407a8d2d7c3c2162", "key": "cvelist"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "modified"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=867027", "id": "OPENVAS:867027", "lastseen": "2017-07-25T10:51:58", "modified": "2017-07-10T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "867027", "published": "2013-10-29T00:00:00", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html", "2013-18931"], "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for ReviewBoard FEDORA-2013-18931\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867027);\n script_version(\"$Revision: 6628 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:32:47 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 11:15:35 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2013-4410\", \"CVE-2013-4411\", \"CVE-2013-4409\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for ReviewBoard FEDORA-2013-18931\");\n\n tag_insight = \"Review Board is a powerful web-based code review tool that offers\ndevelopers an easy way to handle code reviews. It scales well from small\nprojects to large companies and offers a variety of tools to take much\nof the stress and time out of the code review process.\n\";\n\n tag_affected = \"ReviewBoard on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-18931\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html\");\n script_summary(\"Check for the Version of ReviewBoard\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"ReviewBoard\", rpm:\"ReviewBoard~1.7.16~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for ReviewBoard FEDORA-2013-18931", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:51:58"}], "edition": 3, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "79bd89e511345607407a8d2d7c3c2162"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "62785b235746c3c568ef76d06be02e50"}, {"key": "href", "hash": "81c292f8714e870db19b2340e56e8139"}, {"key": "modified", "hash": "4339a0396c5ac850494597c646ca2c77"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "ee7323f9772dc2e45b55694775fc51f0"}, {"key": "published", "hash": "89f6521403e555beb45c4e536fb31351"}, {"key": "references", "hash": "a3bd416e2ec90f4f7139bd91167107c2"}, {"key": "reporter", "hash": "1a99a5f9a50e5bac3b749d8558d5e46b"}, {"key": "sourceData", "hash": "bb688002dc32bae6a030bedcd2befb8b"}, {"key": "title", "hash": "99858af287208ed577a999e6eef949b4"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "94d3783e58ffdaf8e84a4eb860f35d20bbaf3173fbfd5e152283cf8c8db131ec", "viewCount": 0, "enchantments": {"vulnersScore": 7.5}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for ReviewBoard FEDORA-2013-18931\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867027);\n script_version(\"$Revision: 8650 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-03 13:16:59 +0100 (Sat, 03 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 11:15:35 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2013-4410\", \"CVE-2013-4411\", \"CVE-2013-4409\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for ReviewBoard FEDORA-2013-18931\");\n\n tag_insight = \"Review Board is a powerful web-based code review tool that offers\ndevelopers an easy way to handle code reviews. It scales well from small\nprojects to large companies and offers a variety of tools to take much\nof the stress and time out of the code review process.\n\";\n\n tag_affected = \"ReviewBoard on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-18931\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of ReviewBoard\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"ReviewBoard\", rpm:\"ReviewBoard~1.7.16~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "867027"}
{"result": {"nessus": [{"id": "FEDORA_2013-18840.NASL", "type": "nessus", "title": "Fedora 20 : ReviewBoard-1.7.16-2.fc20 / python-djblets-0.7.21-1.fc20 (2013-18840)", "description": "Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).\n\nThese issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.\n\nThere are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2013-11-11T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=70815", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2017-10-29T13:41:09"}, {"id": "FEDORA_2013-18911.NASL", "type": "nessus", "title": "Fedora 18 : ReviewBoard-1.7.16-2.fc18 / python-djblets-0.7.21-1.fc18 (2013-18911)", "description": "Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).\n\nThese issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.\n\nThere are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=70665", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2017-10-29T13:34:38"}, {"id": "FEDORA_2013-18931.NASL", "type": "nessus", "title": "Fedora 19 : ReviewBoard-1.7.16-2.fc19 / python-djblets-0.7.21-1.fc19 (2013-18931)", "description": "Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).\n\nThese issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.\n\nThere are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=70666", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2017-10-29T13:45:32"}], "openvas": [{"id": "OPENVAS:867036", "type": "openvas", "title": "Fedora Update for python-djblets FEDORA-2013-18931", "description": "Check for the Version of python-djblets", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=867036", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2018-01-18T11:08:48"}, {"id": "OPENVAS:867030", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2013-18911", "description": "Check for the Version of ReviewBoard", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=867030", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2018-01-26T11:10:24"}, {"id": "OPENVAS:1361412562310867032", "type": "openvas", "title": "Fedora Update for python-djblets FEDORA-2013-18911", "description": "Check for the Version of python-djblets", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867032", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2018-04-06T11:23:41"}, {"id": "OPENVAS:867032", "type": "openvas", "title": "Fedora Update for python-djblets FEDORA-2013-18911", "description": "Check for the Version of python-djblets", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=867032", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2018-02-06T13:10:45"}, {"id": "OPENVAS:867606", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2014-3420", "description": "Check for the Version of ReviewBoard", "published": "2014-03-17T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867606", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4519"], "lastseen": "2017-07-25T10:48:47"}, {"id": "OPENVAS:1361412562310867036", "type": "openvas", "title": "Fedora Update for python-djblets FEDORA-2013-18931", "description": "Check for the Version of python-djblets", "published": "2013-10-29T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867036", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4409"], "lastseen": "2018-04-06T11:21:29"}, {"id": "OPENVAS:1361412562310867606", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2014-3420", "description": "Check for the Version of ReviewBoard", "published": "2014-03-17T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867606", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4519"], "lastseen": "2018-04-09T11:13:06"}, {"id": "OPENVAS:1361412562310867956", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2014-7333", "description": "Check for the Version of ReviewBoard", "published": "2014-07-15T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867956", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4519"], "lastseen": "2018-04-09T11:12:03"}, {"id": "OPENVAS:1361412562310867056", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2013-20814", "description": "Check for the Version of ReviewBoard", "published": "2013-11-18T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867056", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4519"], "lastseen": "2018-04-09T11:24:26"}, {"id": "OPENVAS:867081", "type": "openvas", "title": "Fedora Update for ReviewBoard FEDORA-2013-20817", "description": "Check for the Version of ReviewBoard", "published": "2013-11-26T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867081", "cvelist": ["CVE-2013-4411", "CVE-2013-4410", "CVE-2013-4519"], "lastseen": "2018-02-05T11:10:35"}]}}