Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1159053 - Potential XSS problems in spacewalk-java
Summary: Potential XSS problems in spacewalk-java
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Spacewalk
Classification: Community
Component: Server
Version: 2.2
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Michael Mráka
QA Contact: Red Hat Satellite QA List
URL:
Whiteboard:
Depends On:
Blocks: space23
TreeView+ depends on / blocked
 
Reported: 2014-10-30 19:05 UTC by Stephen Herr
Modified: 2015-04-14 19:17 UTC (History)
0 users

Fixed In Version: spacewalk-java-2.2.125-1
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-10-31 12:49:43 UTC
Embargoed:

Attachments (Terms of Use)

Description Stephen Herr 2014-10-30 19:05:36 UTC 
Description of problem:
There were two potential Cross-Site Scripting problems in spacewalk-java that would allow an authenticated user to run arbitrary javascript.

One was a Stored XSS flaw related to Kickstart Snippets.

The other was a Reflected XSS flaw related to list sorting attributes.

See https://access.redhat.com/security/cve/CVE-2014-3654 for more details.
Comment 1 Stephen Herr 2014-10-30 19:09:55 UTC 
Committing to Spacewalk master:
3f09a66059315894bae4ae4675ff51fe569b874e

Cherry-picking to Spacewalk 2.2:
Comment 2 Stephen Herr 2014-10-30 19:10:18 UTC 
Cherry-picking to Spacewalk 2.2:
5f2ce5937e3b89ea06b7f6e4fa1aaeb4695df249
Note You need to log in before you can comment on or make changes to this bug.