https://bugzilla.redhat.com/show_bug.cgi?id=1200065 Bug ID: 1200065 Summary: CVE-2015-1165 rt: information disclosure flaw in RSS feed handler Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team@xxxxxxxxxx Reporter: mprpic@xxxxxxxxxx CC: perl-devel@xxxxxxxxxxxxxxxxxxxxxxx, rc040203@xxxxxxxxxx, tibbs@xxxxxxxxxxx An information disclosure flaw was found in Request Tracker's (RT) processed RSS feed handler. A remote attacker could use this flaw to disclose RSS feed URLs, which can potentially contain sensitive ticket data. This flaw is fixed in 4.2.10: https://bestpractical.com/release-notes/rt/4.2.10 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=dSVy5FoXQF&a=cc_unsubscribe -- Fedora Extras Perl SIG http://www.fedoraproject.org/wiki/Extras/SIGs/Perl perl-devel mailing list perl-devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/perl-devel
