PublicDate: 2006-10-23 17:07:00 UTC
Candidate: CVE-2006-5454
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5454
Description:
 Bugzilla 2.18.x before 2.18.6, 2.20.x before 2.20.3, 2.22.x before 2.22.1,
 and 2.23.x before 2.23.3 allow remote attackers to obtain (1) the
 description of arbitrary attachments by viewing the attachment in "diff"
 mode in attachment.cgi, and (2) the deadline field by viewing the XML
 format of the bug in show_bug.cgi.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_bugzilla: ignored (reached end-of-life)
edgy_bugzilla: needed (reached end-of-life)
feisty_bugzilla: released (2.22.1-2)
gutsy_bugzilla: released (2.22.1-2)
hardy_bugzilla: released (2.22.1-2)
intrepid_bugzilla: released (2.22.1-2)
jaunty_bugzilla: released (2.22.1-2)
karmic_bugzilla: released (2.22.1-2)
devel_bugzilla: released (2.22.1-2)
upstream_bugzilla: needs-triage