Lucene search
Ubuntu.comUB:CVE-2012-0950HistoryJun 04, 2012 - 12:00 a.m.
CVE-2012-0950
2012-06-0400:00:00
ubuntu.com
ubuntu.com
13
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
75.9%
The Apport hook (DistUpgradeApport.py) in Update Manager, as used by Ubuntu
12.04 LTS, 11.10, and 11.04, uploads the /var/log/dist-upgrade directory
when reporting bugs to Launchpad, which allows remote attackers to read
repository credentials by viewing a public bug report. NOTE: this
vulnerability exists because of an incomplete fix for CVE-2012-0949.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 11.04 | noarch | update-manager | < 1:0.150.5.4 | UNKNOWN |
| ubuntu | 11.10 | noarch | update-manager | < 1:0.152.25.12 | UNKNOWN |
| ubuntu | 12.04 | noarch | update-manager | < 1:0.156.14.5 | UNKNOWN |
Related
ubuntu
ubuntu
Update Manager vulnerability
2012-06-04 00:00:00
Update Manager vulnerabilities
2012-05-17 00:00:00
prion
prion
Design/Logic Flaw
2012-06-19 20:55:00
Design/Logic Flaw
2012-05-31 17:55:00
openvas
openvas
Ubuntu: Security Advisory (USN-1443-2)
2012-06-08 00:00:00
Ubuntu Update for update-manager USN-1443-2
2012-06-08 00:00:00
Ubuntu Update for update-manager USN-1443-1
2012-05-22 00:00:00
cvelist
cvelist
CVE-2012-0950
2012-06-19 20:00:00
CVE-2012-0949
2012-05-31 17:00:00
nessus
nessus
cve
cve
CVE-2012-0950
2012-06-19 20:55:05
CVE-2012-0949
2012-05-31 17:55:02
nvd
nvd
CVE-2012-0950
2012-06-19 20:55:05
CVE-2012-0949
2012-05-31 17:55:02
ubuntucve
ubuntucve
CVE-2012-0949
2012-05-17 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
75.9%
Related for UB:CVE-2012-0950