Bugzilla – Bug 922740
VUL-0: CVE-2015-0284: spacewalk: stored XSS in user details fields (incomplete fix for CVE-2014-7811)
Last modified: 2016-05-20 00:14:51 UTC
embargoed via rh bugzilla https://bugzilla.redhat.com/show_bug.cgi?id=1181472 Jan Hutař reports: There is stored XSS vulnerability in user details field in Satellite server, they can be exploited by using the REST API to send XML data containing malformed data. (again this is currently all information)
bugbot adjusting priority
is public, but still not more information available
*** Bug 969911 has been marked as a duplicate of this bug. ***
External reference: spacewalk git dd418384171473c3e31386a1b4792f8c555dc744 spacewalk git f3792c79c1c251a49cc4e382be8591636326a794
PR for 2.1 opened, pending review: https://github.com/SUSE/spacewalk/pull/529 3.0 not affected.
Merged, closing this bug. Thanks everyone for cooperation.
SUSE-SU-2016:1367-1: An update that solves 5 vulnerabilities and has 24 fixes is now available. Category: security (moderate) Bug References: 922740,924298,958923,961002,961565,962253,966622,966737,966890,968257,968406,968851,970223,970425,970550,970672,970901,970989,971237,972341,973162,973432,973550,974010,974011,974315,976194,976826,978166 CVE References: CVE-2015-0284,CVE-2016-2103,CVE-2016-2104,CVE-2016-3079,CVE-2016-3097 Sources used: SUSE Manager 2.1 (src): cobbler-2.2.2-0.61.2, osad-5.11.33.11-15.2, rhnlib-2.5.69.8-11.2, spacewalk-backend-2.1.55.25-24.5, spacewalk-branding-2.1.33.16-18.2, spacewalk-certs-tools-2.1.6.10-18.3, spacewalk-java-2.1.165.23-20.1, spacewalk-utils-2.1.27.15-12.7, suseRegisterInfo-2.1.12-14.2, susemanager-2.1.24-23.1, susemanager-sync-data-2.1.15-30.2, susemanager-tftpsync-2.1.2-11.2