[Bug 1166064] CVE-2012-6662 jquery-ui: XSS vulnerability in default content in Tooltip widget

Thu Nov 20 15:50:27 UTC 2014

https://bugzilla.redhat.com/show_bug.cgi?id=1166064

Vincent Danen <vdanen at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=moderate,public=2012 |impact=moderate,public=2012
                   |1127,reported=20141120,sour |1127,reported=20141120,sour
                   |ce=internet,cvss2=4.3/AV:N/ |ce=internet,cvss2=4.3/AV:N/
                   |AC:M/Au:N/C:N/I:P/A:N,fedor |AC:M/Au:N/C:N/I:P/A:N,fedor
                   |a-all/asterisk-gui=affected |a-all/asterisk-gui=affected
                   |,fedora-all/beacon=affected |,fedora-all/beacon=affected
                   |,fedora-all/blender=affecte |,fedora-all/blender=affecte
                   |d,fedora-all/bodhi=affected |d,fedora-all/bodhi=affected
                   |,fedora-all/cacti=affected, |,fedora-all/cacti=affected,
                   |fedora-all/calibre=affected |fedora-all/calibre=affected
                   |,fedora-all/cinnamon=affect |,fedora-all/cinnamon=affect
                   |ed,fedora-all/ckeditor=affe |ed,fedora-all/ckeditor=affe
                   |cted,fedora-all/cobbler=aff |cted,fedora-all/cobbler=aff
                   |ected,fedora-all/couchdb=af |ected,fedora-all/couchdb=af
                   |fected,fedora-all/cumin=aff |fected,fedora-all/cumin=aff
                   |ected,fedora-all/django-typ |ected,fedora-all/django-typ
                   |epad=affected,fedora-all/dl |epad=affected,fedora-all/dl
                   |=affected,fedora-all/dokuwi |=affected,fedora-all/dokuwi
                   |ki=affected,fedora-all/drup |ki=affected,fedora-all/drup
                   |al6=affected,fedora-all/dru |al6=affected,fedora-all/dru
                   |pal7=affected,fedora-all/dr |pal7=affected,fedora-all/dr
                   |upal7-jquery_update=affecte |upal7-jquery_update=affecte
                   |d,fedora-all/fish=affected, |d,fedora-all/fish=affected,
                   |fedora-all/fityk=affected,f |fedora-all/fityk=affected,f
                   |edora-all/freeipa=affected, |edora-all/freeipa=affected,
                   |fedora-all/gallery3=affecte |fedora-all/gallery3=affecte
                   |d,fedora-all/global=affecte |d,fedora-all/global=affecte
                   |d,fedora-all/graphite-web=a |d,fedora-all/graphite-web=a
                   |ffected,fedora-all/hotot=af |ffected,fedora-all/hotot=af
                   |fected,fedora-all/ikiwiki=a |fected,fedora-all/ikiwiki=a
                   |ffected,fedora-all/libgda=a |ffected,fedora-all/libgda=a
                   |ffected,fedora-all/mediawik |ffected,fedora-all/mediawik
                   |i=affected,fedora-all/mojom |i=affected,fedora-all/mojom
                   |ojo=affected,fedora-all/nod |ojo=affected,fedora-all/nod
                   |ejs-should=affected,fedora- |ejs-should=affected,fedora-
                   |all/OpenLP=affected,fedora- |all/OpenLP=affected,fedora-
                   |all/openslides=affected,fed |all/openslides=affected,fed
                   |ora-all/openteacher=affecte |ora-all/openteacher=affecte
                   |d,fedora-all/orbited=affect |d,fedora-all/orbited=affect
                   |ed,fedora-all/perl-Mojolici |ed,fedora-all/perl-Mojolici
                   |ous=affected,fedora-all/php |ous=affected,fedora-all/php
                   |PgAdmin=affected,fedora-all |PgAdmin=affected,fedora-all
                   |/python-backlash=affected,f |/python-backlash=affected,f
                   |edora-all/python-django=aff |edora-all/python-django=aff
                   |ected,fedora-all/python-dja |ected,fedora-all/python-dja
                   |ngo-debug-toolbar=affected, |ngo-debug-toolbar=affected,
                   |fedora-all/python-django-ty |fedora-all/python-django-ty
                   |pepadapp=affected,fedora-al |pepadapp=affected,fedora-al
                   |l/python-django14=affected, |l/python-django14=affected,
                   |fedora-all/python-django15= |fedora-all/python-django15=
                   |affected,fedora-all/python- |affected,fedora-all/python-
                   |flask-debugtoolbar=affected |flask-debugtoolbar=affected
                   |,fedora-all/python-pebl=aff |,fedora-all/python-pebl=aff
                   |ected,fedora-all/python-sph |ected,fedora-all/python-sph
                   |inx=affected,fedora-all/pyt |inx=affected,fedora-all/pyt
                   |hon-tw-jquery=affected,fedo |hon-tw-jquery=affected,fedo
                   |ra-all/python-tw2-jqplugins |ra-all/python-tw2-jqplugins
                   |-flot=affected,fedora-all/p |-flot=affected,fedora-all/p
                   |ython-tw2-jquery=affected,f |ython-tw2-jquery=affected,f
                   |edora-all/python-werkzeug=a |edora-all/python-werkzeug=a
                   |ffected,fedora-all/python-X |ffected,fedora-all/python-X
                   |Static-jQuery=affected,fedo |Static-jQuery=affected,fedo
                   |ra-all/python-backlash=affe |ra-all/python-backlash=affe
                   |cted,fedora-all/python-djan |cted,fedora-all/python-djan
                   |go=affected,fedora-all/pyth |go=affected,fedora-all/pyth
                   |on-sphinx=affected,fedora-a |on-sphinx=affected,fedora-a
                   |ll/python-werkzeug=affected |ll/python-werkzeug=affected
                   |,fedora-all/roundup=affecte |,fedora-all/roundup=affecte
                   |d,fedora-all/rubygem-jquery |d,fedora-all/rubygem-jquery
                   |-rails=affected,fedora-all/ |-rails=affected,fedora-all/
                   |sagemath=affected,fedora-al |sagemath=affected,fedora-al
                   |l/sparkleshare=affected,fed |l/sparkleshare=affected,fed
                   |ora-all/spyder=affected,fed |ora-all/spyder=affected,fed
                   |ora-all/StarCluster=affecte |ora-all/StarCluster=affecte
                   |d,fedora-all/sticky-notes=a |d,fedora-all/sticky-notes=a
                   |ffected,fedora-all/sugar-he |ffected,fedora-all/sugar-he
                   |lp=affected,fedora-all/varn |lp=affected,fedora-all/varn
                   |ish-agent=affected,fedora-a |ish-agent=affected,fedora-a
                   |ll/webacula=affected,fedora |ll/webacula=affected,fedora
                   |-all/wesnoth=affected,fedor |-all/wesnoth=affected,fedor
                   |a-all/why3=affected,fedora- |a-all/why3=affected,fedora-
                   |all/wordpress=affected,fedo |all/wordpress=affected,fedo
                   |ra-all/yelp-xsl=affected,fe |ra-all/yelp-xsl=affected,fe
                   |dora-all/zabbix=affected,ep |dora-all/zabbix=affected,ep
                   |el-all/drupal7-jquery_updat |el-all/drupal7-jquery_updat
                   |e=affected,epel-all/python- |e=affected,epel-all/python-
                   |tw-jquery=affected,epel-all |tw-jquery=affected,epel-all
                   |/python-tw2-jquery=affected |/python-tw2-jquery=affected
                   |,epel-all/python-XStatic-jq |,epel-all/python-XStatic-jq
                   |uery-ui=affected,openshift- |uery-ui=affected,openshift-
                   |1/drupal6-jquery_ui-lib=new |1/drupal6-jquery_ui-lib=new
                   |,openshift-1/ruby193-rubyge |,openshift-1/ruby193-rubyge
                   |m-jquery-rails=new,openshif |m-jquery-rails=new,openshif
                   |t-enterprise-1/ruby193-ruby |t-enterprise-1/ruby193-ruby
                   |gem-jquery-rails=new,opensh |gem-jquery-rails=new,opensh
                   |ift-enterprise-2/ruby193-ru |ift-enterprise-2/ruby193-ru
                   |bygem-jquery-rails=new,rhsc |bygem-jquery-rails=new,rhsc
                   |l-1.2/ror40-rubygem-jquery- |l-1.2/ror40-rubygem-jquery-
                   |rails=new,rhscl-1.2/ruby193 |rails=new,rhscl-1.2/ruby193
                   |-rubygem-jquery-rails=new,r |-rubygem-jquery-rails=new,r
                   |hn_satellite_6/ruby193-ruby |hn_satellite_6/ruby193-ruby
                   |gem-jquery-ui-rails=new,sam |gem-jquery-ui-rails=new,sam
                   |-1/ruby193-rubygem-jquery-r |-1/ruby193-rubygem-jquery-r
                   |ails=new,cfme-5/ruby193-rub |ails=new,cfme-5/ruby193-rub
                   |ygem-jquery-rails=new,opens |ygem-jquery-rails=new,opens
                   |tack-4/ruby193-rubygem-jque |tack-4/ruby193-rubygem-jque
                   |ry-rails=new,openstack-fore |ry-rails=new,openstack-fore
                   |man/ruby193-rubygem-jquery- |man/ruby193-rubygem-jquery-
                   |ui-rails=new,rhel-6/ipa=new |ui-rails=new,rhel-6/ipa=aff
                   |,rhel-6/python-sphinx=new,r |ected,rhel-6/python-sphinx=
                   |hel-7/ipa=new,rhel-7/python |new,rhel-7/ipa=affected,rhe
                   |-sphinx=new,rhel-7/yelp-xsl |l-7/python-sphinx=new,rhel-
                   |=new                        |7/yelp-xsl=new

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=uexZy4ZGjt&a=cc_unsubscribe