Launchpad.net

CVE 2010-3685

The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.0 protocol by not checking for reuse of openid.response_nonce values, which allows remote attackers to bypass authentication by leveraging an assertion from an OpenID provider.

Related bugs and status

CVE-2010-3685 (Candidate) is related to these bugs:

Bug #539056: backport security fixes from 6.19 and 5.23

		In	Importance	Status
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu)	Medium	Fix Released
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu)	Undecided	Invalid
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu Hardy)	Medium	Fix Released
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu Hardy)	Undecided	Invalid
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu Jaunty)	Undecided	Won't Fix
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu Jaunty)	Undecided	Won't Fix
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu Karmic)	Medium	Fix Released
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu Karmic)	Medium	Fix Released
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu Lucid)	Undecided	Invalid
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu Lucid)	Medium	Fix Released
539056	backport security fixes from 6.19 and 5.23	drupal5 (Ubuntu Maverick)	Undecided	Invalid
539056	backport security fixes from 6.19 and 5.23	drupal6 (Ubuntu Maverick)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2010-3685

Related bugs and status

Related bugs

References