--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-a832c215bf
2020-03-29 01:36:32.573053
--------------------------------------------------------------------------------
Name : ckeditor
Product : Fedora 31
Version : 4.14.0
Release : 1.fc31
URL :
http://ckeditor.com/
Summary : WYSIWYG text editor to be used inside web pages
Description :
CKEditor is a text editor to be used inside web pages. It's a WYSIWYG editor,
which means that the text being edited on it looks as similar as possible to
the results users have when publishing it. It brings to the web common editing
features found on desktop editing applications like Microsoft Word and
OpenOffice.
--------------------------------------------------------------------------------
Update Information:
## CKEditor 4.14 **Security Updates:** *
[
CVE-2020-9281](https://nvd.nist.gov/vuln/detail/CVE-2020-9281) Fixed XSS
vulnerability in the HTML data processor reported by [Micha��
Bentkowski](https://twitter.com/securitymb) of Securitum. Issue
summary: It was possible to execute XSS inside CKEditor after persuading the
victim to: (i) switch CKEditor to source mode, then (ii) paste a specially
crafted HTML code, prepared by the attacker, into the opened CKEditor source
area, and (iii) switch back to WYSIWYG mode or (i) copy the specially crafted
HTML code, prepared by the attacker and (ii) paste it into CKEditor in WYSIWYG
mode. * [
CVE-2020-9440](https://nvd.nist.gov/vuln/detail/CVE-2020-9440) Fixed
XSS vulnerability in the WebSpellChecker Dialog plugin reported by [Pham Van
Khanh](https://twitter.com/rskvp93) from Viettel Cyber Security. Issue
summary: It was possible to execute XSS using CKEditor after persuading the
victim to: (i) switch CKEditor to source mode, then (ii) paste a specially
crafted HTML code, prepared by the attacker, into the opened CKEditor source
area, then (iii) switch back to WYSIWYG mode, and (iv) preview CKEditor content
outside CKEditor editable area. **An upgrade is highly recommended!** New
features: * [#2374](https://github.com/ckeditor/ckeditor4/issues/2374): Added
support for pasting rich content from LibreOffice Writer with the [Paste from
LibreOffice](https://ckeditor.com/cke4/addon/pastefromlibreoffice) plugin. *
[#2583](https://github.com/ckeditor/ckeditor4/issues/2583): Changed
[
emoji](https://ckeditor.com/cke4/addon/emoji) suggestion box to show the
matched emoji name instead of an ID. *
[#3748](https://github.com/ckeditor/ckeditor4/issues/3748): Improved the [color
button](https://ckeditor.com/cke4/addon/colorbutton) state to reflect the
selected editor content colors. *
[#3661](https://github.com/ckeditor/ckeditor4/issues/3661): Improved the
[
Print](https://ckeditor.com/cke4/addon/print) plugin to respect styling
rendered by the [
Preview](https://ckeditor.com/cke4/addon/preview) plugin. *
[#3547](https://github.com/ckeditor/ckeditor4/issues/3547): Active
[
dialog](https://ckeditor.com/cke4/addon/dialog) tab now has the `aria-
selected="true"` attribute. *
[#3441](https://github.com/ckeditor/ckeditor4/issues/3441): Improved [`widget.ge
tClipboardHtml()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO...
ns_widget.html#method-getClipboardHtml) support for dragging and dropping
multiple [
widgets](https://ckeditor.com/cke4/addon/widget). Fixed Issues: *
[#3587](https://github.com/ckeditor/ckeditor4/issues/3587): [Edge, IE] Fixed:
[
Widget](https://ckeditor.com/cke4/addon/widget) with form input elements loses
focus during typing. *
[#3705](https://github.com/ckeditor/ckeditor4/issues/3705): [Safari] Fixed:
Safari incorrectly removes blocks with the [`editor.extractSelectedHtml()`](http
s://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
extractSelectedHtml) method after selecting all content. *
[#1306](https://github.com/ckeditor/ckeditor4/issues/1306): Fixed: The
[
Font](https://ckeditor.com/cke4/addon/font) plugin creates nested HTML `<span>`
tags when reapplying the same font multiple times. *
[#3498](https://github.com/ckeditor/ckeditor4/issues/3498): Fixed: The editor
throws an error during the copy operation when a
[
widget](https://ckeditor.com/cke4/addon/widget) is partially selected. *
[#2517](https://github.com/ckeditor/ckeditor4/issues/2517): [Chrome, Firefox,
Safari] Fixed: Inserting a new image when the selection partially covers an
existing [enhanced
image](https://ckeditor.com/cke4/addon/image2) widget throws
an error. * [#3007](https://github.com/ckeditor/ckeditor4/issues/3007): [Chrome,
Firefox, Safari] Fixed: Cannot modify the editor content once the selection is
released over a [
widget](https://ckeditor.com/cke4/addon/widget). *
[#3698](https://github.com/ckeditor/ckeditor4/issues/3698): Fixed: Cutting the
selected text when a [
widget](https://ckeditor.com/cke4/addon/widget) is
partially selected merges paragraphs. API Changes: *
[#3387](https://github.com/ckeditor/ckeditor4/issues/3387): Added the [CKEDITOR.
ui.richCombo.select()](https://ckeditor.com/docs/ckeditor4/latest/api/CKE...
i_richCombo.html#method-select) method. *
[#3727](https://github.com/ckeditor/ckeditor4/issues/3727): Added new
`textColor` and `bgColor` commands that apply the selected color chosen by the
[Color
Button](https://ckeditor.com/cke4/addon/colorbutton) plugin. *
[#3728](https://github.com/ckeditor/ckeditor4/issues/3728): Added new `font` and
`fontSize` commands that apply the selected font style chosen by the
[
Font](https://ckeditor.com/cke4/addon/colorbutton) plugin. *
[#3842](https://github.com/ckeditor/ckeditor4/issues/3842): Added the [`editor.g
etSelectedRanges()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI...
tor.html#method-getSelectedRanges) alias. *
[#3775](https://github.com/ckeditor/ckeditor4/issues/3775): Widget [mask](https:
//ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_widget.html#property-
mask) and [
parts](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugin
s_widget.html#property-parts) can now be refreshed dynamically via API calls.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 20 2020 Shawn Iwinski <shawn(a)iwin.ski> - 4.14.0-1
- Update to 4.14.0 (RHBZ #1810020)
- CVE-2020-9281 (RHBZ #1814825,1814826,1814827)
- CVE-2020-9440
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.13.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1810020 - ckeditor-4.14.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1810020
[ 2 ] Bug #1814826 - CVE-2020-9281 ckeditor: XSS in the HTML Data Processor allows
remote attackers to inject arbitrary web script through a crafted "protected"
comment [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1814826
[ 3 ] Bug #1814827 - CVE-2020-9281 ckeditor: XSS in the HTML Data Processor allows
remote attackers to inject arbitrary web script through a crafted "protected"
comment [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1814827
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-a832c215bf' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------