CRLF injection on https://buildbot.mariadb.org
State Resolved (Closed)
Disclosed publicly 2019-02-04T11:32:11.707Z
Reported To
Weakness CRLF Injection
Bounty
Collapse

Summary by mik317

A CRLF (new line) injection vulnerability has been discovered in the Buildbot.net software and reported to us. We have forwarded this to the Buildbot developers which coordinated a fix release and public disclosure. This vulnerability has been assigned CVE-2019-7313. More details in the advisory text.

Timeline
submitted a report to MariaDB .
2019-01-17T16:37:34.170Z

Regards,
Frans

  • 0 attachments:
mik317 Activities::Comment
2019-01-19T22:03:31.147Z


teodor Activities::BugTriaged
2019-01-21T07:20:00.927Z


mik317 Activities::Comment
2019-01-21T11:34:58.202Z


teodor Activities::BugNeedsMoreInfo
2019-01-24T14:19:12.819Z


mik317 Activities::BugNew
2019-01-24T14:24:17.740Z


teodor Activities::Comment
2019-01-31T15:50:29.826Z


mik317 Activities::Comment
2019-01-31T16:04:29.186Z


mik317 Activities::Comment
2019-02-02T13:48:17.029Z


mik317 Activities::Comment
2019-02-02T22:20:23.290Z


mik317 Activities::Comment
2019-02-03T11:22:09.325Z


teodor Activities::Comment
2019-02-04T06:26:41.040Z


teodor Activities::ReportTitleUpdated
2019-02-04T06:27:17.807Z


teodor Activities::BugResolved
2019-02-04T06:29:34.943Z


teodor Activities::AgreedOnGoingPublic
2019-02-04T06:35:27.600Z


mik317 Activities::AgreedOnGoingPublic
2019-02-04T11:32:11.658Z


mik317 Activities::ReportBecamePublic
2019-02-04T11:32:11.727Z