CVE-2010-0668

Publication date 26 February 2010

Last updated 24 July 2024

Ubuntu priority

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
moin	9.10 karmic	Fixed 1.8.4-1ubuntu1.1
	9.04 jaunty	Fixed 1.8.2-2ubuntu2.2
	8.10 intrepid	Fixed 1.7.1-1ubuntu1.3
	8.04 LTS hardy	Fixed 1.5.8-5.1ubuntu2.3
	6.06 LTS dapper	Fixed 1.5.2-1ubuntu2.5

How can I get the fixes?
What do statuses mean?

Notes

jdstrand

upstream plans to backport to 1.7 and 1.8 only. Patches for 8.04 LTS and 6.06 LTS need a lot of work since the 1.7 patches don't apply.

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-911-1
MoinMoin vulnerabilities
11 March 2010

Other references

http://moinmo.in/SecurityFixes
https://www.cve.org/CVERecord?id=CVE-2010-0668