CVE-2015-1165
Published: 9 March 2015
RT (aka Request Tracker) 3.8.8 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to obtain sensitive RSS feed URLs and ticket data via unspecified vectors.
Priority
Medium
Status
| Package | Release | Status |
|---|---|---|
|
request-tracker3.8 Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| lucid |
Ignored
(reached end-of-life)
|
|
| precise |
Does not exist
(precise was needs-triage)
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
request-tracker4 Launchpad, Ubuntu, Debian |
artful |
Not vulnerable
(4.2.8-3)
|
| bionic |
Not vulnerable
(4.2.8-3)
|
|
| cosmic |
Not vulnerable
(4.2.8-3)
|
|
| disco |
Not vulnerable
(4.2.8-3)
|
|
| eoan |
Not vulnerable
(4.2.8-3)
|
|
| lucid |
Does not exist
|
|
| precise |
Does not exist
(precise was needed)
|
|
| trusty |
Does not exist
(trusty was needed)
|
|
| upstream |
Released
(4.2.8-3)
|
|
| utopic |
Ignored
(reached end-of-life)
|
|
| vivid |
Does not exist
|
|
| wily |
Not vulnerable
(4.2.8-3)
|
|
| xenial |
Not vulnerable
(4.2.8-3)
|
|
| yakkety |
Not vulnerable
(4.2.8-3)
|
|
| zesty |
Not vulnerable
(4.2.8-3)
|