CVE 2012-2144
Session fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allows remote attackers to hijack web sessions via the sessionid cookie.
Related bugs and status
CVE-2012-2144 (Candidate) is related to these bugs:
Bug #978896: session fixation vulnerability
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
978896 | session fixation vulnerability | OpenStack Dashboard (Horizon) | Critical | Fix Released | ||
978896 | session fixation vulnerability | OpenStack Dashboard (Horizon) essex | Critical | Fix Released |
Bug #997669: When adding ICMP rule, the type/code is being validated as from/to ports
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
997669 | When adding ICMP rule, the type/code is being validated as from/to ports | OpenStack Dashboard (Horizon) | High | Fix Released | ||
997669 | When adding ICMP rule, the type/code is being validated as from/to ports | OpenStack Dashboard (Horizon) essex | High | Fix Released | ||
997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu) | Undecided | Fix Released | ||
997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu Precise) | Undecided | Fix Released | ||
997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu Quantal) | Undecided | Fix Released |
Bug #1041120: Meta bug for tracking Openstack Stable Updates
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu) | Undecided | Invalid | ||
1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu) | Undecided | Invalid | ||
1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu) | Undecided | Invalid | ||
1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu) | Undecided | Invalid | ||
1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu Precise) | Undecided | Fix Released | ||
1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu Precise) | Undecided | Fix Released | ||
1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu Precise) | Undecided | Fix Released | ||
1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu Precise) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.