Bugzilla 2.17.x, 2.18 before 2.18.2, 2.19.x, and 2.20 before 2.20rc1 inserts a bug into the database before it is marked private, which introduces a race condition and allows attackers to access information about the bug via buglist.cgi before MySQL replication is complete.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Bugzilla | Mozilla | 2.17.1 (including) | 2.17.1 (including) |
| Bugzilla | Mozilla | 2.17.3 (including) | 2.17.3 (including) |
| Bugzilla | Mozilla | 2.17.4 (including) | 2.17.4 (including) |
| Bugzilla | Mozilla | 2.17.5 (including) | 2.17.5 (including) |
| Bugzilla | Mozilla | 2.17.6 (including) | 2.17.6 (including) |
| Bugzilla | Mozilla | 2.17.7 (including) | 2.17.7 (including) |
| Bugzilla | Mozilla | 2.18 (including) | 2.18 (including) |
| Bugzilla | Mozilla | 2.18-rc1 (including) | 2.18-rc1 (including) |
| Bugzilla | Mozilla | 2.18-rc2 (including) | 2.18-rc2 (including) |
| Bugzilla | Mozilla | 2.18-rc3 (including) | 2.18-rc3 (including) |
| Bugzilla | Mozilla | 2.18.1 (including) | 2.18.1 (including) |
| Bugzilla | Mozilla | 2.19 (including) | 2.19 (including) |
| Bugzilla | Mozilla | 2.19.1 (including) | 2.19.1 (including) |
| Bugzilla | Mozilla | 2.19.2 (including) | 2.19.2 (including) |
| Bugzilla | Mozilla | 2.19.3 (including) | 2.19.3 (including) |