Bug 1601616 (CVE-2018-14041)

Summary: CVE-2018-14041 bootstrap: Cross-site Scripting (XSS) in the data-target property of scrollspy
Product: [Other] Security Response Reporter: Laura Pardo <lpardo>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: abergmann, abokovoy, aileenc, alazarot, amctagga, anstephe, aoconnor, apevec, asoldano, aturgema, axilleas, bbaranow, bbuckingham, bcourt, bdettelb, bkearney, bmaxwell, bniver, brian.stansberry, cdewolf, chazlett, cheimes, chrisw, cpelland, dajohnso, darran.lofthouse, dclarizi, dkreling, dosoudil, drieden, eglynn, ehelms, etirelli, fjuma, flucifre, frenaud, gblomqui, gmalinko, gmccullo, gmeno, gtanzill, hhudgeon, ibek, idm-ds-dev-bugs, ivassile, iweiss, janstey, jfrey, jhardy, jjoyce, jkozol, jochrist, jpavlik, jprause, jschluet, jsherril, jwendell, jwon, kbasil, krathod, kverlaen, lgao, lhh, lpeer, lpetrovi, lzap, markmc, mbenjamin, mburns, meissner, mgarciac, mhackett, mhulan, michal.skrivanek, mkosek, mmccune, mosmerov, mperina, mpitt, mrike, mrunge, msochure, msvehla, muagarwa, myarboro, nmoumoul, nwallace, obarenbo, ocs-bugs, ohadlevy, omajid, orabin, paradhya, pcreech, pdelbell, pdrozd, pjindal, pmackay, pszubiak, rbryant, rcernich, rchan, rcritten, rdopiera, rhcs-maint, rhos-maint, rhos-maint, rjerrido, roliveri, rrajasek, rstancel, rsynek, rzhang, sbonazzo, sclewis, sdaley, simaishi, slinaber, smaestri, sostapov, spower, sthorger, tdecacqu, tjay, tlestach, tomckay, tom.jenkinson, tscherf, twalsh, twoerner, vereddy
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: bootstrap 4.1.2 Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in Bootstrap, where it is vulnerable to Cross-site scripting, caused by improper validation of user-supplied input by the data-target property of scrollspy. This flaw allows a remote attacker to execute a script in a victim's Web browser within the security context of the hosting Web site, which can lead to stealing the victim's cookie-based authentication credentials.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2018-10-15 05:24:22 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2183416, 2183417, 2183418, 2183419, 2183420, 2183421, 2183422    
Bug Blocks: 1632066, 1696523    

Description Laura Pardo 2018-07-16 22:50:03 UTC 
A flaw was found in Bootstrap from version 4.0 and before 4.1.2. A Cross-site Scripting (XSS) is possible in the data-target property of scrollspy.

References:
https://github.com/twbs/bootstrap/issues/26627

Upstream Patch:
https://github.com/twbs/bootstrap/pull/26630
Comment 2 Doran Moppert 2018-10-15 05:24:22 UTC 
bootstrap 3.3.7 is not affected by this flaw.
Comment 5 errata-xmlrpc 2019-06-11 15:32:21 UTC 
This issue has been addressed in the following products:

  Red Hat Single Sign-On 7.3.2 zip

Via RHSA-2019:1456 https://access.redhat.com/errata/RHSA-2019:1456
Comment 10 errata-xmlrpc 2023-01-31 13:10:18 UTC 
This issue has been addressed in the following products:

  Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8

Via RHSA-2023:0553 https://access.redhat.com/errata/RHSA-2023:0553
Comment 11 errata-xmlrpc 2023-01-31 13:14:18 UTC 
This issue has been addressed in the following products:

  Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7

Via RHSA-2023:0552 https://access.redhat.com/errata/RHSA-2023:0552
Comment 12 errata-xmlrpc 2023-01-31 13:17:54 UTC 
This issue has been addressed in the following products:

  Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9

Via RHSA-2023:0554 https://access.redhat.com/errata/RHSA-2023:0554
Comment 13 errata-xmlrpc 2023-01-31 13:19:04 UTC 
This issue has been addressed in the following products:

  Red Hat JBoss Enterprise Application Platform

Via RHSA-2023:0556 https://access.redhat.com/errata/RHSA-2023:0556
Comment 15 Avinash Hanwate 2023-03-31 03:43:22 UTC 
Created qpid-dispatch tracking bugs for this issue:

Affects: openstack-rdo [bug 2183421]


Created zuul tracking bugs for this issue:

Affects: fedora-all [bug 2183418]
Comment 18 errata-xmlrpc 2023-10-12 16:34:20 UTC 
This issue has been addressed in the following products:

  Red Hat Ceph Storage 6.1

Via RHSA-2023:5693 https://access.redhat.com/errata/RHSA-2023:5693