|
|
| |
|
| |
smokeping: two XSS vulnerabilities
| Package(s): | smokeping |
CVE #(s): | CVE-2013-4158
CVE-2013-4168
|
| Created: | August 15, 2013 |
Updated: | August 21, 2013 |
| Description: |
From the Red Hat Bugzilla entries [1, 2]:
CVE-2013-4158:
The fix for CVE-2012-0790 in smokeping 2.6.7 was incomplete. The
filtering used this blacklist:
$mode =~ s/[<>&%]/./g;
The version in 2.6.9 uses the following blacklist:
my $xssBadRx = qr/[<>%&'";]/;
(', ", and ; have been added. When it is used, blacklist chars are now
turned to _ rather than . ) The 2.6.9 version prevents escaping <html
attribute="..."> via " characters.
The incomplete fix is in 2.6.7 and 2.6.8.
CVE-2013-4168: Another XSS was reported in smokeping, regarding the "start" and "end" time fields. These fields are not properly filtered. This has been fixed in upstream git. |
| Alerts: |
|
( Log in to post comments)
|
|
|