A cross-site scripting (XSS) flaw was found in the way MantisBT, a web-based issue tracking system, sanitized content of the version name, when deleting a project version. A remote attacker could provide a specially-crafted URL that, when visited would lead to arbitrary HTML or web script execution in the context of the MantisBT user's session. References: [1] http://www.openwall.com/lists/oss-security/2013/04/04/8 Upstream ticket: [2] http://www.mantisbt.org/bugs/view.php?id=15511 Upstream patches: [3] http://github.com/mantisbt/mantisbt/commit/8b13da010c1bc921f011fbe40ee8acf9cd34eb55 (against 1.2.x) [4] http://github.com/mantisbt/mantisbt/commit/44e140e9f634266d0a2f3101a9f2809a97702138 (against master)
This issue affects the versions of the mantis package, as shipped with Fedora release of 17 and 18. Please schedule an update. -- This issue affects the version of the mantis package, as shipped with Fedora EPEL-5. Please schedule an update.
Created mantis tracking bugs for this issue Affects: fedora-all [bug 948995]
Created mantis tracking bugs for this issue Affects: epel-5 [bug 948997]
The CVE identifier of CVE-2013-1931 has been assigned to this issue: http://www.openwall.com/lists/oss-security/2013/04/06/4
mantis-1.2.15-1.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
mantis-1.2.15-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
mantis-1.2.15-1.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.