1039783 – (CVE-2013-6430) CVE-2013-6430 Spring Framework: org.spring.web.util.JavaScriptUtils.javaScriptEscape insufficient escaping of characters

Bug 1039783 (CVE-2013-6430) - CVE-2013-6430 Spring Framework: org.spring.web.util.JavaScriptUtils.javaScriptEscape insufficient escaping of characters

Summary: CVE-2013-6430 Spring Framework: org.spring.web.util.JavaScriptUtils.javaScrip...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2013-6430
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1026176 1039784
TreeView+	depends on / blocked

Reported:	2013-12-10 01:33 UTC by David Jorm
Modified:	2023-05-12 19:22 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2014-04-14 17:44:34 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2014:0400	0	normal	SHIPPED_LIVE	Moderate: Red Hat JBoss Fuse 6.1.0 update	2014-04-14 18:27:37 UTC
Red Hat Product Errata	RHSA-2014:0401	0	normal	SHIPPED_LIVE	Moderate: Red Hat JBoss A-MQ 6.1.0 update	2014-04-14 18:07:26 UTC

Description David Jorm 2013-12-10 01:33:19 UTC

It was found that the org.spring.web.util.JavaScriptUtils.javaScriptEscape method insufficiently escaped some characters. Applications using this method to escape user-supplied content that will be rendered in HTML 5 documents may expose cross-site scripting (XSS) flaws.

Comment 1 David Jorm 2013-12-10 01:36:18 UTC

Upstream bug:

https://jira.springsource.org/browse/SPR-9983

Comment 2 Vincent Danen 2014-01-14 23:22:57 UTC

This affects Spring MVC versions 3.0.0 to 3.2.1, however upstream notes that earlier unsupported versions may also be affected.

External References:

http://www.gopivotal.com/security/cve-2013-6430

Comment 4 David Jorm 2014-01-15 00:10:13 UTC

Acknowledgements:

This issue was discovered by Jon Passki of Coverity SRL and Arun Neelicattu of the Red Hat Security Response Team.

Comment 5 errata-xmlrpc 2014-04-14 13:49:00 UTC

This issue has been addressed in following products:

  Red Hat JBoss AM-Q 6.1.0

Via RHSA-2014:0401 https://rhn.redhat.com/errata/RHSA-2014-0401.html

Comment 6 Chess Hazlett 2014-04-15 02:38:56 UTC

This issue has been addressed in following products:

  Red Hat JBoss Fuse 6.1.0

Via RHSA-2014:0400 https://rhn.redhat.com/errata/RHSA-2014-0400.html

Note You need to log in before you can comment on or make changes to this bug.