CVE-2018-12479

A Improper Input Validation vulnerability in Open Build Service allows remote attackers to cause DoS by specifying crafted request IDs. Affected releases are openSUSE Open Build Service: versions prior to 01b015ca2a320afc4fae823465d1e72da8bd60df.

References

https://bugzilla.suse.com/show_bug.cgi?id=1108435

Affected packages

Git / github.com/opensuse/open-build-service

Affected ranges

Type

GIT

Repo

https://github.com/opensuse/open-build-service

Events

Introduced

Last affected

ba1b692293bdef5afd46b9904052ee5072bc85c5

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.9.4"
        }
    ]
}

Affected versions

1.*

1.9.90

1.9.91

1.9.92

2.*

2.3.60

2.3.90

2.3.91

2.4.50

2.4.51

2.5.50

2.9.0

2.9.1

2.9.2

2.9.3

2.9.4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-12479.json"