2014-07-19 12:04:19 |
Julian Taylor |
bug |
|
|
added bug |
2014-07-19 12:04:31 |
Julian Taylor |
ipython (Ubuntu): status |
New |
Fix Released |
|
2014-07-19 12:04:38 |
Julian Taylor |
nominated for series |
|
Ubuntu Precise |
|
2014-07-19 12:04:38 |
Julian Taylor |
bug task added |
|
ipython (Ubuntu Precise) |
|
2014-07-19 12:05:04 |
Julian Taylor |
description |
ipython 0.12 in precise is affected by CVE-2014-3429 which allows remote execution of code if one has knowledge of the kernel id (uuid)
See this page for details of the issue:
http://lambdaops.com/cross-origin-websocket-hijacking-of-ipython |
ipython 0.12 in precise is affected by CVE-2014-3429 which allows remote execution of code if one has knowledge of the kernel id (uuid)
the version in lucid and trusty are not affected
See this page for details of the issue:
http://lambdaops.com/cross-origin-websocket-hijacking-of-ipython |
|
2014-07-19 12:06:44 |
Julian Taylor |
cve linked |
|
2014-3429 |
|
2014-07-19 12:07:14 |
Julian Taylor |
attachment added |
|
ipython_0.12.1+dfsg-0ubuntu1.1.debdiff https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+attachment/4156835/+files/ipython_0.12.1%2Bdfsg-0ubuntu1.1.debdiff |
|
2014-07-19 12:07:35 |
Julian Taylor |
bug |
|
|
added subscriber Ubuntu Security Sponsors Team |
2014-07-19 19:13:42 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/precise-backports/ipython |
|
2014-07-21 11:35:47 |
Dimitri John Ledkov |
ipython (Ubuntu Precise): status |
New |
Confirmed |
|
2014-07-28 17:34:05 |
Jamie Strandboge |
ipython (Ubuntu Precise): status |
Confirmed |
In Progress |
|
2014-07-28 17:35:27 |
Jamie Strandboge |
removed subscriber Ubuntu Security Sponsors Team |
|
|
|
2014-07-28 18:48:18 |
Launchpad Janitor |
ipython (Ubuntu Precise): status |
In Progress |
Fix Released |
|
2014-07-28 19:05:17 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/precise-security/ipython |
|