VDB

GCVE-110-MAGEIA-2015-48

GCVE-110-MAGEIA-2015-48
Advisory Published
Vulnetix · Advisory published January 31, 2015
Updated bugzilla packages fix security vulnerability: Some code in Bugzilla does not properly utilize 3 arguments form for open() and it is possible for an account with editcomponents permissions to inject commands into product names and other attributes (CVE-2014-8630).

Affected Products

VendorProductVersionsPlatforms
Mageiabugzilla4.4.8-1.mga4 (unaffected), 0 (affected), 0 (affected), 4.4.8-1.mga4 (unaffected)
Mageiadrakxtools16.26.13-1.mga4 (unaffected), 0 (affected)

Browse GCVE Records

73,866 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›