Bug ID | 1040353 |
---|---|
Summary | Bugzilla JS YUI CVE-2012-5883 |
Classification | openSUSE |
Product | openSUSE.org |
Version | unspecified |
Hardware | Other |
OS | Other |
Status | NEW |
Severity | Normal |
Priority | P5 - None |
Component | Bugzilla |
Assignee | bnc-team-screening@forge.provo.novell.com |
Reporter | contact@damjanovic.rocks |
QA Contact | novbugzilla-bugs@forge.provo.novell.com |
Found By | --- |
Blocker | --- |
bugzilla.opensuse.org uses yui 2.9.0 http://developer.yahoo.com/yui/ https://yuilibrary.com/ which may be vulnerabel to CVE-2012-5883 CVE-2012-5882 CVE-2012-5881 yui 2.9.0 is used in Bugzilla 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1