1159053 – Potential XSS problems in spacewalk-java

Bug 1159053 - Potential XSS problems in spacewalk-java

Summary: Potential XSS problems in spacewalk-java

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Spacewalk
Classification:	Community
Component:	Server
Sub Component:
Version:	2.2
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Michael Mráka
QA Contact:	Red Hat Satellite QA List
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	space23
TreeView+	depends on / blocked

Reported:	2014-10-30 19:05 UTC by Stephen Herr
Modified:	2015-04-14 19:17 UTC (History)
CC List:	0 users
Fixed In Version:	spacewalk-java-2.2.125-1
Clone Of:
Environment:
Last Closed:	2014-10-31 12:49:43 UTC
Embargoed:

Attachments	(Terms of Use)

Description Stephen Herr 2014-10-30 19:05:36 UTC

Description of problem:
There were two potential Cross-Site Scripting problems in spacewalk-java that would allow an authenticated user to run arbitrary javascript.

One was a Stored XSS flaw related to Kickstart Snippets.

The other was a Reflected XSS flaw related to list sorting attributes.

See https://access.redhat.com/security/cve/CVE-2014-3654 for more details.

Comment 1 Stephen Herr 2014-10-30 19:09:55 UTC

Committing to Spacewalk master:
3f09a66059315894bae4ae4675ff51fe569b874e

Cherry-picking to Spacewalk 2.2:

Comment 2 Stephen Herr 2014-10-30 19:10:18 UTC

Cherry-picking to Spacewalk 2.2:
5f2ce5937e3b89ea06b7f6e4fa1aaeb4695df249

Note You need to log in before you can comment on or make changes to this bug.