Candidate: CVE-2010-4570
PublicDate: 2011-01-28 16:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4570
Description:
 Cross-site scripting (XSS) vulnerability in the duplicate-detection
 functionality in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote
 attackers to inject arbitrary web script or HTML via the summary field,
 related to the DataTable widget in YUI.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_bugzilla:
upstream_bugzilla: released (4.0rc2)
dapper_bugzilla: not-affected (3.7.x and higher)
hardy_bugzilla: not-affected (3.7.x and higher)
karmic_bugzilla: not-affected (3.7.x and higher)
lucid_bugzilla: not-affected (3.7.x and higher)
maverick_bugzilla: not-affected (3.7.x and higher)
devel_bugzilla: not-affected (3.7.x and higher)