Candidate: CVE-2012-0203
PublicDate: 2013-01-31 12:06:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0203
 http://www.openwall.com/lists/oss-security/2013/01/22
 http://owncloud.org/about/security/advisories/oC-SA-2013-001/
Description:
 Cross-site scripting (XSS) vulnerability in InfoSphere Metadata Workbench
 (MWB) 8.1 through 8.7 in IBM InfoSphere Information Server 8.1, 8.5 before
 FP3, and 8.7 allows remote attackers to inject arbitrary web script or HTML
 via unspecified vectors.
Ubuntu-Description:
Notes:
 mdeslaur> owncloud packages in Ubuntu are now empty
 seth-arnold> I don't know which git tree is meant, but fixes are in commits
 seth-arnold> 708bd and 3f37063
Bugs:
Priority: medium
Discovered-by: Frans Rosén
Assigned-to:
CVSS: 

Patches_owncloud:
upstream_owncloud: released (4.0.11, 4.5.6)
hardy_owncloud: DNE
lucid_owncloud: DNE
oneiric_owncloud: ignored (reached end-of-life)
precise_owncloud: not-affected
quantal_owncloud: ignored (reached end-of-life)
raring_owncloud: ignored (reached end-of-life)
saucy_owncloud: ignored (reached end-of-life)
trusty_owncloud: not-affected
trusty/esm_owncloud: DNE (trusty was not-affected)
utopic_owncloud: DNE
vivid_owncloud: DNE
wily_owncloud: DNE
devel_owncloud: DNE