CVE-2007-0791

Publication date 6 February 2007

Last updated 17 July 2025


Ubuntu priority

Description

Cross-site scripting (XSS) vulnerability in Atom feeds in Bugzilla 2.20.3, 2.22.1, and 2.23.3, and earlier versions down to 2.20.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Status

Package Ubuntu Release Status
bugzilla 9.10 karmic
Fixed 2.22.1-2.2ubuntu1
9.04 jaunty
Fixed 2.22.1-2.2ubuntu1
8.10 intrepid
Fixed 2.22.1-2.2ubuntu1
8.04 LTS hardy
Fixed 2.22.1-2.2ubuntu1
7.10 gutsy
Fixed 2.22.1-2.2ubuntu1
7.04 feisty Ignored end of life, was needed
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life


Access our resources on patching vulnerabilities