CVE-2012-2927

The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and 7.x before 7.0.3 for Atlassian JIRA does not properly restrict the capabilities of third-party XML parsers, which allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors.

packagechannelchannel versionpkg versionstatus
tempo
nixos-unstable
2020-12-30 13:40:40 UTC (733e53)0.4.0vulnerable
2020-12-28 03:35:23 UTC (2f4765)0.4.0vulnerable
2020-12-26 19:40:21 UTC (84917a)0.4.0vulnerable
2020-12-25 22:30:40 UTC (be0b45)0.4.0vulnerable
2020-12-24 11:50:43 UTC (57a787)0.4.0vulnerable
2020-12-09 23:30:18 UTC (e9158e)0.4.0vulnerable
2020-12-07 13:45:28 UTC (83cbad)0.4.0vulnerable
2020-12-04 00:20:45 UTC (296793)0.3.0vulnerable
2020-11-30 17:20:38 UTC (24eb3f)0.3.0vulnerable
2020-11-29 23:00:20 UTC (8ee7c2)0.3.0vulnerable
2020-11-29 17:40:30 UTC (11b755)0.3.0vulnerable
2020-11-28 13:10:37 UTC (6f0c00)0.3.0vulnerable
2020-11-24 05:40:24 UTC (2247d8)0.3.0vulnerable
2020-11-21 17:05:25 UTC (a322b3)0.3.0vulnerable
2020-11-21 10:55:23 UTC (662528)0.3.0vulnerable
2020-11-20 00:35:36 UTC (069f18)0.3.0vulnerable
2020-11-15 21:10:35 UTC (2deeb5)0.3.0vulnerable
2020-11-13 02:15:20 UTC (a371c1)0.3.0vulnerable
2020-11-11 00:50:18 UTC (b839d4)0.2.0vulnerable
2020-11-08 14:00:30 UTC (a52e97)0.2.0vulnerable