CVE 2012-2144
Session fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allows remote attackers to hijack web sessions via the sessionid cookie.
Related bugs and status
CVE-2012-2144 (Candidate) is related to these bugs:
Bug #978896: session fixation vulnerability
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 978896 | session fixation vulnerability | OpenStack Dashboard (Horizon) | Critical | Fix Released | ||
| 978896 | session fixation vulnerability | OpenStack Dashboard (Horizon) essex | Critical | Fix Released | ||
Bug #997669: When adding ICMP rule, the type/code is being validated as from/to ports
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 997669 | When adding ICMP rule, the type/code is being validated as from/to ports | OpenStack Dashboard (Horizon) | High | Fix Released | ||
| 997669 | When adding ICMP rule, the type/code is being validated as from/to ports | OpenStack Dashboard (Horizon) essex | High | Fix Released | ||
| 997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu) | Undecided | Fix Released | ||
| 997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu Precise) | Undecided | Fix Released | ||
| 997669 | When adding ICMP rule, the type/code is being validated as from/to ports | horizon (Ubuntu Quantal) | Undecided | Fix Released | ||
Bug #1041120: Meta bug for tracking Openstack Stable Updates
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu Precise) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
