UBUNTU-CVE-2014-6275
- Source
- https://ubuntu.com/security/CVE-2014-6275
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-6275.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2014-6275
- Upstream
- Withdrawn
- 2025-07-18T16:43:04Z
- Published
- 2020-01-02T22:15:00Z
- Modified
- 2025-07-16T07:32:08.584569Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
FusionForge before 5.3.2 use scripts that run under the shared Apache user, which is also used by project homepages by default. If project webpages are hosted on the same server than FusionForge, it can allow users to incorrectly access on-disk private data in FusionForge.
- References
Affected packages
Ubuntu:16.04:LTS / fusionforge
Package
- Name
- fusionforge
- Purl
- pkg:deb/ubuntu/fusionforge@6.0.2+20150708-1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed6.0.2+20150708-1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-common"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-db-local"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-db-remote"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-lists"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-mta-exim4"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-mta-postfix"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-admssw"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-authcas"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-authhttpd"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-authldap"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-blocks"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-compactpreview"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-contribtracker"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-doaprdf"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-extsubproj"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-foafprofiles"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-globalsearch"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-gravatar"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-headermenu"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-hudson"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-mediawiki"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-message"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-moinmoin"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-projectlabels"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmarch"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmbzr"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmcvs"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmdarcs"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmgit"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmhg"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmhook"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-scmsvn"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-sysauthldap"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-taskboard"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-plugin-webanalytics"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-scm"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-shell"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-web"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "fusionforge-web-vhosts"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-common"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-db-postgresql"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-db-remote"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-lists-mailman"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-mta-exim4"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-mta-postfix"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-shell-postgresql"
},
{
"binary_version": "6.0.2+20150708-1",
"binary_name": "gforge-web-apache2"
}
]
}