1360627 – (CVE-2016-1000037) CVE-2016-1000037 pagure: XSS in file attachment endpoint

Bug 1360627 (CVE-2016-1000037) - CVE-2016-1000037 pagure: XSS in file attachment endpoint

Summary: CVE-2016-1000037 pagure: XSS in file attachment endpoint

Keywords:
Status:	CLOSED UPSTREAM
Alias:	CVE-2016-1000037
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1360628 1360629
Blocks:
TreeView+	depends on / blocked

Reported:	2016-07-27 07:57 UTC by Martin Prpič
Modified:	2019-09-29 13:54 UTC (History)
CC List:	2 users (show)
Fixed In Version:	pagure 2.3.4
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-06-08 02:56:41 UTC
Embargoed:

Attachments	(Terms of Use)

Description Martin Prpič 2016-07-27 07:57:12 UTC

It was found that Pagure served uploaded files from its attachment endpoint with content types that instructed the browser to parse HTML files, which could lead to Cross-Site Scripting attacks.

Upstream patch:

https://pagure.io/pagure/c/8b231cd378cf880df3bf7cd81277c1f771dab988

The release that fixes this issue is Pagure 2.3.4.

Comment 1 Martin Prpič 2016-07-27 07:57:37 UTC

Created pagure tracking bugs for this issue:

Affects: fedora-all [bug 1360628]
Affects: epel-7 [bug 1360629]

Comment 2 Product Security DevOps Team 2019-06-08 02:56:41 UTC

This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.

Note You need to log in before you can comment on or make changes to this bug.