Candidate: CVE-2012-4430
PublicDate: 2012-10-10 18:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4430
 http://www.bacula.org/git/cgit.cgi/bacula/commit/?id=67debcecd3d530c429e817e1d778e79dcd1db905
Description:
 The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does
 not properly enforce ACL rules, which allows remote authenticated users to
 obtain resource dump information via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687923
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_bacula:
 upstream: http://www.bacula.org/git/cgit.cgi/bacula/commit/?id=67debcecd3d530c429e817e1d778e79dcd1db905
upstream_bacula: needs-triage
hardy_bacula: ignored (reached end-of-life)
lucid_bacula: ignored (reached end-of-life)
natty_bacula: ignored (reached end-of-life)
oneiric_bacula: ignored (reached end-of-life)
precise_bacula: ignored (reached end-of-life)
precise/esm_bacula: DNE (precise was needed)
quantal_bacula: ignored (reached end-of-life)
raring_bacula: ignored (reached end-of-life)
saucy_bacula: ignored (reached end-of-life)
trusty_bacula: not-affected (5.2.6+dfsg-4)
trusty/esm_bacula: DNE (trusty was not-affected [5.2.6+dfsg-4])
utopic_bacula: ignored (reached end-of-life)
vivid_bacula: ignored (reached end-of-life)
vivid/stable-phone-overlay_bacula: DNE
vivid/ubuntu-core_bacula: DNE
wily_bacula: ignored (reached end-of-life)
xenial_bacula: not-affected (5.2.6+dfsg-4)
yakkety_bacula: ignored (reached end-of-life)
zesty_bacula: ignored (reached end-of-life)
artful_bacula: ignored (reached end-of-life)
bionic_bacula: not-affected (5.2.6+dfsg-4)
cosmic_bacula: not-affected (5.2.6+dfsg-4)
devel_bacula: not-affected (5.2.6+dfsg-4)