Candidate: CVE-2011-1589
PublicDate: 2011-04-29 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1589
Description:
 Directory traversal vulnerability in Path.pm in Mojolicious before 1.16
 allows remote attackers to read arbitrary files via a %2f..%2f (encoded
 slash dot dot slash) in a URI.
Ubuntu-Description:
Notes:
Bugs:
 https://github.com/kraih/mojo/issues/114
 https://bugzilla.redhat.com/show_bug.cgi?id=697229
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libmojolicious-perl:
 upstream: https://github.com/kraih/mojo/commit/b09854988c5b5b6a2ba53cc8661c4b2677da3818
upstream_libmojolicious-perl: released (1.16)
dapper_libmojolicious-perl: DNE
hardy_libmojolicious-perl: DNE
lucid_libmojolicious-perl: DNE
maverick_libmojolicious-perl: DNE
natty_libmojolicious-perl: ignored (reached end-of-life)
oneiric_libmojolicious-perl: not-affected (1.21-1)
precise_libmojolicious-perl: not-affected (1.21-1)
quantal_libmojolicious-perl: not-affected (1.21-1)
devel_libmojolicious-perl: not-affected (1.21-1)