CVE-2013-4180 - Potential DoS in HostsController
HostController#power and HostController#ipmi_boot convert user input to symbol which could lead to memory exhaustion. Patch already sent, so setting Ready For Testing status.
#1 Updated by Dominic Cleal about 6 years ago
- File 0001-fixes-2860-don-t-convert-arbitrary-input-into-symbol.patch 0001-fixes-2860-don-t-convert-arbitrary-input-into-symbol.patch added
- Status changed from Ready For Testing to Pending
Patch ACKed by me, pending merge with 1.2.1 release.
#2 Updated by Marek Hulán about 6 years ago
- Subject changed from Potential DoS in HostsController to CVE-2013-4180 - Potential DoS in HostsController