Launchpad CVE tracker

CVE 2012-4430

The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.

Related bugs and status

CVE-2012-4430 (Candidate) is related to these bugs:

Bug #1064435: Please merge bacula 5.2.6+dfsg-5 from debian unstable

Summary				In	Importance	Status
	1064435	Please merge bacula 5.2.6+dfsg-5 from debian unstable		bacula (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.debian.org/...
MISC: http://www.mandriva.co...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: http://sourceforge.net...
MISC: http://www.bacula.org/...
MISC: http://www.bacula.org/...

Launchpad.net

CVE 2012-4430

Related bugs and status

Related bugs

References