[Bug 1940450] Re: XSS The data-template attribute of the tooltip and popover plugins lacks input sanitization and may allow attacker to execute arbitrary JavaScript.
Heather Lemon
1940450 at bugs.launchpad.net
Fri Aug 27 15:09:17 UTC 2021
Upgrading the package to the fixed version shows the sanitize functions
like "sanitizeHtml" in
~/horizon/xstatic/pkg/bootstrap_scss/data/js/bootstrap.js, however since
this is a security fix, I'll have to let the security team handle it.
test branch with package upgrades
https://code.launchpad.net/~hypothetical-lemon/+git/horizon/+ref/lp1940450-cve-2019-8331
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to horizon in Ubuntu.
https://bugs.launchpad.net/bugs/1940450
Title:
XSS The data-template attribute of the tooltip and popover plugins
lacks input sanitization and may allow attacker to execute arbitrary
JavaScript.
Status in Ubuntu Cloud Archive:
New
Status in OpenStack Dashboard (Horizon):
Invalid
Status in OpenStack Security Advisory:
Invalid
Status in horizon package in Ubuntu:
New
Status in python-xstatic-bootstrap-scss package in Ubuntu:
New
Bug description:
The data-template attribute of the tooltip and popover plugins lacks
input sanitization and may allow attacker to execute arbitrary
JavaScript.
github source: https://github.com/twbs/bootstrap/pull/28236
github upstream MR: https://github.com/twbs/bootstrap/pull/28236/commits/5efa9b531d25927b907e3fa24b818608bc38a2f0
ubuntu-cve https://ubuntu.com/security/CVE-2019-8331
openstack-dashboard,from xenial UCA, python-django-horizon version 13.0.2-0ubuntu3~cloud0
`pull-uca-source python-django-horizon 3:13.0.2-0ubuntu3~cloud0`
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1940450/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list