871690 – (CVE-2012-5920) CVE-2012-5920 GWT: unknown XSS flaw

Bug 871690 (CVE-2012-5920) - CVE-2012-5920 GWT: unknown XSS flaw

Summary: CVE-2012-5920 GWT: unknown XSS flaw

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2012-5920
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	871044 871695 873880
Blocks:	871697 884342
TreeView+	depends on / blocked

Reported:	2012-10-31 04:32 UTC by David Jorm
Modified:	2021-02-17 08:27 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2013-07-31 06:05:03 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2013:0187	0	normal	SHIPPED_LIVE	Moderate: JBoss Operations Network 3.1.2 update	2013-01-24 02:46:46 UTC

Description David Jorm 2012-10-31 04:32:47 UTC

An unknown cross-site scripting (XSS) vulnerability has been resolved in Google Web Toolkit (GWT) 2.5. GWT 2.4 GA and the 2.5 RC builds are affected.

Comment 1 David Jorm 2012-10-31 04:34:44 UTC

External Reference:

https://developers.google.com/web-toolkit/release-notes#Release_Notes_Current

Comment 6 errata-xmlrpc 2013-01-23 21:47:27 UTC

This issue has been addressed in following products:

  JBoss Operations Network 3.1.2

Via RHSA-2013:0187 https://rhn.redhat.com/errata/RHSA-2013-0187.html

Note You need to log in before you can comment on or make changes to this bug.