| Bug ID | 1040353 |
|---|---|
| Summary | Bugzilla JS YUI CVE-2012-5883 |
| Classification | openSUSE |
| Product | openSUSE.org |
| Version | unspecified |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | Bugzilla |
| Assignee | bnc-team-screening@forge.provo.novell.com |
| Reporter | contact@damjanovic.rocks |
| QA Contact | novbugzilla-bugs@forge.provo.novell.com |
| Found By | --- |
| Blocker | --- |
bugzilla.opensuse.org uses yui 2.9.0 http://developer.yahoo.com/yui/ https://yuilibrary.com/ which may be vulnerabel to CVE-2012-5883 CVE-2012-5882 CVE-2012-5881 yui 2.9.0 is used in Bugzilla 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1