| Name | CVE-2014-0468 |
| Description | Vulnerability in fusionforge in the shipped Apache configuration, where the web server may execute scripts that the users would have uploaded in their raw SCM repositories (SVN, Git, Bzr...). This issue affects fusionforge: before 5.3+20140506. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| fusionforge | source | squeeze | (unfixed) | end-of-life | ||
| fusionforge | source | (unstable) | 5.3+20140506-1 |
[squeeze] - fusionforge <end-of-life> (Unsupported in squeeze-lts)
http://lists.fusionforge.org/pipermail/fusionforge-general/2014-March/002645.html