Candidate: CVE-2012-6581
PublicDate: 2013-07-24 12:01:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6581
 https://bugzilla.redhat.com/show_bug.cgi?id=870406#c3
Description:
 Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8,
 when GnuPG is enabled, allows remote attackers to bypass intended
 restrictions on reading keys in the product's keyring, and trigger outbound
 e-mail messages signed by an arbitrary stored secret key, by leveraging a
 UI e-mail signing privilege.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_request-tracker3.8:
upstream_request-tracker3.8: released (3.8.15)
lucid_request-tracker3.8: ignored (reached end-of-life)
precise_request-tracker3.8: ignored (reached end-of-life)
precise/esm_request-tracker3.8: DNE (precise was needed)
quantal_request-tracker3.8: DNE
raring_request-tracker3.8: DNE
saucy_request-tracker3.8: DNE
trusty_request-tracker3.8: DNE
trusty/esm_request-tracker3.8: DNE
utopic_request-tracker3.8: DNE
vivid_request-tracker3.8: DNE
vivid/stable-phone-overlay_request-tracker3.8: DNE
vivid/ubuntu-core_request-tracker3.8: DNE
wily_request-tracker3.8: DNE
xenial_request-tracker3.8: DNE
yakkety_request-tracker3.8: DNE
zesty_request-tracker3.8: DNE
devel_request-tracker3.8: DNE

Patches_request-tracker4:
upstream_request-tracker4: released (4.0.8)
lucid_request-tracker4: DNE
precise_request-tracker4: ignored (reached end-of-life)
precise/esm_request-tracker4: DNE (precise was needed)
quantal_request-tracker4: ignored (reached end-of-life)
raring_request-tracker4: ignored (reached end-of-life)
saucy_request-tracker4: not-affected (4.0.13-1)
trusty_request-tracker4: not-affected (4.0.13-1)
trusty/esm_request-tracker4: DNE (trusty was not-affected [4.0.13-1])
utopic_request-tracker4: not-affected (4.0.13-1)
vivid_request-tracker4: not-affected (4.0.13-1)
vivid/stable-phone-overlay_request-tracker4: DNE
vivid/ubuntu-core_request-tracker4: DNE
wily_request-tracker4: not-affected (4.0.13-1)
xenial_request-tracker4: not-affected (4.0.13-1)
yakkety_request-tracker4: not-affected (4.0.13-1)
zesty_request-tracker4: not-affected (4.0.13-1)
devel_request-tracker4: not-affected (4.0.13-1)