Candidate: CVE-2014-4168
PublicDate: 2014-07-03 17:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4168
 https://github.com/yarrick/iodine/commit/b715be5cf3978fbe589b03b09c9398d0d791f850
Description:
 (1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers
 to bypass authentication by continuing execution after an error has been
 triggering.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751834
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_iodine:
upstream_iodine: released (0.6.0~rc1-19)
lucid_iodine: ignored (reached end-of-life)
precise_iodine: ignored (reached end-of-life)
precise/esm_iodine: DNE (precise was needed)
saucy_iodine: ignored (reached end-of-life)
trusty_iodine: ignored (reached end-of-life)
trusty/esm_iodine: DNE (trusty was needed)
utopic_iodine: not-affected (0.6.0~rc1-19)
vivid_iodine: not-affected (0.6.0~rc1-19)
vivid/stable-phone-overlay_iodine: DNE
vivid/ubuntu-core_iodine: DNE
wily_iodine: not-affected (0.6.0~rc1-19)
xenial_iodine: not-affected (0.6.0~rc1-19)
yakkety_iodine: not-affected (0.6.0~rc1-19)
zesty_iodine: not-affected (0.6.0~rc1-19)
artful_iodine: not-affected (0.6.0~rc1-19)
bionic_iodine: not-affected (0.6.0~rc1-19)
cosmic_iodine: not-affected (0.6.0~rc1-19)
disco_iodine: not-affected (0.6.0~rc1-19)
devel_iodine: not-affected (0.6.0~rc1-19)