UBUNTU-CVE-2016-9645

See a problem?

Source

https://ubuntu.com/security/notices/UBUNTU-CVE-2016-9645

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2016/UBUNTU-CVE-2016-9645.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2016-9645

Related

CVE-2016-9645

Published

2018-04-10T22:29:00Z

Modified

2018-04-10T22:29:00Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

The fix for ikiwiki for CVE-2016-10026 was incomplete resulting in editing restriction bypass for git revert when using git versions older than 2.8.0. This has been fixed in 3.20161229.

References

https://ubuntu.com/security/CVE-2016-9645
https://ikiwiki.info/security/#cve-2016-9645
http://www.openwall.com/lists/oss-security/2016/12/29/3
https://www.cve.org/CVERecord?id=CVE-2016-9645

Affected packages

Ubuntu:Pro:16.04:LTS / ikiwiki

Package

Name: ikiwiki

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.20150614

3.20160121

Ecosystem specific

{
    "ubuntu_priority": "medium"
}