Bug 928341 - (CVE-2015-0846) VUL-0: CVE-2015-0846: python-django-markupfield, python3-django-markupfield: ReST renderer does not disable the ..raw directive allowing arbitrary file inclusion
(CVE-2015-0846)
VUL-0: CVE-2015-0846: python-django-markupfield, python3-django-markupfield: ...
Status: RESOLVED FIXED
Classification: openSUSE
Product: openSUSE.org
Classification: openSUSE
Component: 3rd party software
unspecified
Other Other
: P3 - Medium : Major (vote)
: ---
Assigned To: Denisart Benjamin
E-mail List
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2015-04-23 10:06 UTC by Andreas Stieger
Modified: 2015-04-26 15:32 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments
Fixes for CVE-2015-0846 (621 bytes, patch)
2015-04-23 22:19 UTC, Denisart Benjamin
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2015-04-23 10:06:35 UTC
James P. Turk discovered that the ReST renderer in django-markupfield, a custom Django field for easy use of markup in text fields, didn't disable the ..raw directive, allowing remote attackers to include arbitrary files.

devel:languages:python   python-django-markupfield
devel:languages:python3  python3-django-markupfield

Not in openSUSE release. Not in SLE.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0846
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0846.html
http://www.debian.org/security/2015/dsa-3230
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0846
Comment 1 Swamp Workflow Management 2015-04-23 22:00:35 UTC
bugbot adjusting priority
Comment 2 Denisart Benjamin 2015-04-23 22:19:59 UTC
Created attachment 632219 [details]
Fixes for CVE-2015-0846
Comment 3 Denisart Benjamin 2015-04-26 15:32:06 UTC
Fixed in version 1.3.3