Bug #36768: CVE-2022-4130: Blind SSRF via Referer header - Foreman

Actions

Bug #36768

closed

CVE-2022-4130: Blind SSRF via Referer header

Added by Eric Helms about 1 year ago. Updated about 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

-

Target version:

Difficulty:

Triaged:

Yes

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman/pull/9840, https://github.com/theforeman/foreman/pull/9845

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Actions

#1

Updated by The Foreman Bot about 1 year ago

Status changed from New to Ready For Testing
Assignee set to Eric Helms
Pull request https://github.com/theforeman/foreman/pull/9840 added

Actions

#2

Updated by The Foreman Bot about 1 year ago

Fixed in Releases 3.9.0 added

Actions

#3

Updated by Eric Helms about 1 year ago

Status changed from Ready For Testing to Closed

Applied in changeset foreman|2517ba4e36f07551a93519c062b057d73f621a32.

Actions

#4

Updated by Ewoud Kohl van Wijngaarden about 1 year ago

Target version set to 3.8.0
Triaged changed from No to Yes

Actions

#5

Updated by The Foreman Bot about 1 year ago

Pull request https://github.com/theforeman/foreman/pull/9845 added

Actions

#6

Updated by The Foreman Bot about 1 year ago

Fixed in Releases 3.8.0 added

Actions

#7

Updated by Evgeni Golov about 1 year ago

Fixed in Releases deleted (~~3.9.0~~)

Actions

Also available in: Atom PDF