Bug 1419694

Summary: Catalog Item Long Descriptions allow the user to override UI styling
Product: Red Hat CloudForms Management Engine Reporter: Satoe Imaishi <simaishi>
Component: UI - OPSAssignee: Martin Hradil <mhradil>
Status: CLOSED ERRATA QA Contact: Shveta <sshveta>
Severity: high Docs Contact:
Priority: high    
Version: 5.7.0CC: dajohnso, dclarizi, hkataria, jhardy, mpovolny, obarenbo, sshveta
Target Milestone: GAKeywords: ZStream
Target Release: 5.7.2   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: service:catalog
Fixed In Version: 5.7.2.0 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1415235 Environment:
Last Closed: 2017-04-12 14:37:13 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Bug Depends On: 1415235    
Bug Blocks:    

Comment 2 CFME Bot 2017-03-03 20:50:58 UTC
New commit detected on ManageIQ/manageiq/euwe:
https://github.com/ManageIQ/manageiq/commit/96617ae8e4530a2e9d824d46ca9665c8f47bb07c

commit 96617ae8e4530a2e9d824d46ca9665c8f47bb07c
Author:     Martin Povolny <mpovolny>
AuthorDate: Mon Feb 6 15:11:09 2017 +0100
Commit:     Satoe Imaishi <simaishi>
CommitDate: Fri Mar 3 15:48:14 2017 -0500

    Merge pull request #275 from himdel/bz1415235-sanitize-long-description
    
    ServiceTemplate - html-sanitize long_description
    (cherry picked from commit 60fe8750d9f276b4816e4ea97edd3280475960f5)
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1419694

 app/assets/javascripts/angular_modules/module_helpers.js |  1 +
 app/assets/javascripts/application.js                    |  1 +
 app/assets/javascripts/components/sanitize.js            |  7 +++++++
 app/views/catalog/_sandt_tree_show.html.haml             |  6 ++++--
 app/views/catalog/_svccat_tree_show.html.haml            | 10 +++++++---
 5 files changed, 20 insertions(+), 5 deletions(-)
 create mode 100644 app/assets/javascripts/angular_modules/module_helpers.js
 create mode 100644 app/assets/javascripts/components/sanitize.js

Comment 3 Shveta 2017-03-23 05:59:30 UTC
Fixed in 5.7.2.0.20170321181409_349f1b1

Comment 5 errata-xmlrpc 2017-04-12 14:37:13 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2017:0898