CVE-2011-4328

Publication date 16 June 2012

Last updated 24 July 2024

Ubuntu priority

plugin/npapi/plugin.cpp in Gnash before 0.8.10 uses weak permissions (world readable) for cookie files with predictable names in /tmp, which allows local users to obtain sensitive information.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
gnash	13.10 saucy	Fixed 0.8.10-3ubuntu1
	13.04 raring	Fixed 0.8.10-3ubuntu1
	12.10 quantal	Fixed 0.8.10-3ubuntu1
	12.04 LTS precise	Fixed 0.8.10-3ubuntu1
	11.10 oneiric	Ignored
	11.04 natty	Ignored
	10.10 maverick	Ignored
	10.04 LTS lucid	Ignored
	8.04 LTS hardy	Ignored

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2011-4328