1034153 – (CVE-2013-6858) CVE-2013-6858 openstack: horizon multiple XSS vulnerabilities.

Bug 1034153 (CVE-2013-6858) - CVE-2013-6858 openstack: horizon multiple XSS vulnerabilities.

Summary: CVE-2013-6858 openstack: horizon multiple XSS vulnerabilities.

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2013-6858
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	CVE-2013-6406 (view as bug list)
Depends On:	1035910 1035911 1035912 1035913 1035914
Blocks:	1034155 1035915
TreeView+	depends on / blocked

Reported:	2013-11-25 10:51 UTC by Ratul Gupta
Modified:	2019-09-29 13:10 UTC (History)
CC List:	17 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2014-04-14 23:09:51 UTC
Embargoed:

Attachments	(Terms of Use)
cve-2013-6858-master-icehouse.patch (3.42 KB, patch) 2013-12-06 17:38 UTC, Kurt Seifried	no flags	Details \| Diff
cve-2013-6858-stable-havana.patch (3.44 KB, patch) 2013-12-06 17:39 UTC, Kurt Seifried	no flags	Details \| Diff
cve-2013-6858-stable-grizzly.patch (3.35 KB, patch) 2013-12-06 17:40 UTC, Kurt Seifried	no flags	Details \| Diff
View All

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2014:0365	0	normal	SHIPPED_LIVE	Moderate: python-django-horizon security and bug fix update	2014-04-04 00:18:36 UTC

Description Ratul Gupta 2013-11-25 10:51:04 UTC

Common Vulnerabilities and Exposures assigned an identifier CVE-2013-6858 to the following vulnerability:

Name: CVE-2013-6858
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6858
Assigned: 20131123
Reference: https://bugs.launchpad.net/horizon/+bug/1247675
Reference: SECUNIA:55770
Reference: http://secunia.com/advisories/55770

Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2013.2 and earlier allow local users to inject arbitrary web script or HTML via an instance name to (1) "Volumes" or (2) "Network Topology" page.

Comment 1 Matthias Runge 2013-11-25 11:19:34 UTC

fix proposed upstream: https://review.openstack.org/#/c/58256/ (it's a backport)

Comment 2 Kurt Seifried 2013-12-04 04:12:11 UTC

*** Bug 1035907 has been marked as a duplicate of this bug. ***

Comment 3 Vincent Danen 2013-12-06 16:38:48 UTC

Icehouse (development branch) fix:
https://review.openstack.org/55175

Havana fix:
https://review.openstack.org/58465

Grizzly fix:
https://review.openstack.org/58820

Description:
Cisco PSIRT reported a vulnerability in the OpenStack Horizon dashboard. By embedding HTML tags in an Instance Name, a tenant may execute a script within an administrator's browser resulting in a cross-site scripting (XSS) attack. Only setups using the Horizon dashboard are affected.

Comment 4 Kurt Seifried 2013-12-06 17:38:53 UTC

Created attachment 833693 [details]
cve-2013-6858-master-icehouse.patch

Comment 5 Kurt Seifried 2013-12-06 17:39:38 UTC

Created attachment 833694 [details]
cve-2013-6858-stable-havana.patch

Comment 6 Kurt Seifried 2013-12-06 17:40:06 UTC

Created attachment 833696 [details]
cve-2013-6858-stable-grizzly.patch

Comment 7 Matthias Runge 2013-12-09 07:43:15 UTC

for Icehouse and (esp. Havana), packages are already built and fixes are included for a while right now.

For grizzly, the patch has not been merged upstream yet.

Comment 9 errata-xmlrpc 2014-04-03 20:21:30 UTC

This issue has been addressed in following products:

  OpenStack 3 for RHEL 6

Via RHSA-2014:0365 https://rhn.redhat.com/errata/RHSA-2014-0365.html

Note You need to log in before you can comment on or make changes to this bug.