Bugzilla – Bug 983807
VUL-0: CVE-2016-4428: openstack-dashboard: XSS in Horizon client side template
Last modified: 2018-10-20 14:48:40 UTC
Created attachment 680151 [details] cve-2016-4428-master-newton.patch cve-2016-4428-master-newton.patch
Created attachment 680152 [details] cve-2016-4428-stable-liberty.patch cve-2016-4428-stable-liberty.patch
Created attachment 680153 [details] cve-2016-4428-stable-mitaka.patch cve-2016-4428-stable-mitaka.patch
bugbot adjusting priority
is public ================================================== OSSA-2016-010: XSS in Horizon client side template ================================================== :Date: June 15, 2016 :CVE: CVE-2016-4428 Affects ~~~~~~~ - Horizon: <=8.0.1, >=9.0.0 <=9.0.1 Description ~~~~~~~~~~~ Beth Lancaster and Brandon Sawyers from Virginia Tech reported a vulnerability in Horizon. By injecting Angularjs template in dashboard forms, such as image's description, an authenticated user may trigger a cross-site-scripting vulnerability when another user browses the affected pages. It may result in potential assets theft like user access credentials. All Horizon setups are affected. Patches ~~~~~~~ - https://review.openstack.org/329997 (Liberty) - https://review.openstack.org/329996 (Mitaka) - https://review.openstack.org/329998 (Newton) Credits ~~~~~~~ - Beth Lancaster from Virginia Tech (CVE-2016-4428) - Brandon Sawyers from Virginia Tech (CVE-2016-4428) References ~~~~~~~~~~ - https://bugs.launchpad.net/bugs/1567673 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4428 -- Tristan Cacqueray OpenStack Vulnerability Management Team
SUSE-SU-2016:2143-1: An update that solves four vulnerabilities and has two fixes is now available. Category: security (low) Bug References: 970258,982426,983807,984442,984443,988729 CVE References: CVE-2016-2140,CVE-2016-4428,CVE-2016-5362,CVE-2016-5363 Sources used: SUSE OpenStack Cloud 6 (src): openstack-ceilometer-5.0.4~a0~dev6-6.1, openstack-ceilometer-doc-5.0.4~a0~dev6-6.2, openstack-cinder-7.0.3~a0~dev2-7.1, openstack-cinder-doc-7.0.3~a0~dev2-7.1, openstack-dashboard-8.0.2~a0~dev34-8.1, openstack-glance-11.0.2~a0~dev13-7.1, openstack-glance-doc-11.0.2~a0~dev13-7.1, openstack-heat-5.0.2~a0~dev93-9.1, openstack-heat-doc-5.0.2~a0~dev93-9.3, openstack-keystone-8.1.1~a0~dev13-3.1, openstack-keystone-doc-8.1.1~a0~dev13-3.2, openstack-manila-1.0.2~a0~dev11-9.1, openstack-manila-doc-1.0.2~a0~dev11-9.2, openstack-neutron-7.1.2~a0~dev29-10.1, openstack-neutron-doc-7.1.2~a0~dev29-10.1, openstack-neutron-fwaas-7.1.2~a0~dev1-6.1, openstack-neutron-fwaas-doc-7.1.2~a0~dev1-6.1, openstack-neutron-lbaas-7.1.2~a0~dev1-6.1, openstack-neutron-lbaas-doc-7.1.2~a0~dev1-6.1, openstack-nova-12.0.5~a0~dev2-7.1, openstack-nova-doc-12.0.5~a0~dev2-7.1, openstack-resource-agents-1.0+git.1467079370.4f2c49d-7.1, python-networking-cisco-2.1.1-6.1, python-openstackclient-1.7.2-4.1
fixed in current products