[Bug 1166064] CVE-2012-6662 jquery-ui: XSS vulnerability in default content in Tooltip widget

Fri Nov 21 16:17:52 UTC 2014

https://bugzilla.redhat.com/show_bug.cgi?id=1166064

Vasyl Kaigorodov <vkaigoro at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=moderate,public=2012 |impact=moderate,public=2012
                   |1127,reported=20141120,sour |1127,reported=20141120,sour
                   |ce=internet,cvss2=4.3/AV:N/ |ce=internet,cvss2=4.3/AV:N/
                   |AC:M/Au:N/C:N/I:P/A:N,fedor |AC:M/Au:N/C:N/I:P/A:N,fedor
                   |a-all/asterisk-gui=affected |a-all/asterisk-gui=affected
                   |,fedora-all/beacon=affected |,fedora-all/beacon=affected
                   |,fedora-all/blender=affecte |,fedora-all/blender=affecte
                   |d,fedora-all/bodhi=affected |d,fedora-all/bodhi=affected
                   |,fedora-all/cacti=affected, |,fedora-all/cacti=affected,
                   |fedora-all/calibre=affected |fedora-all/calibre=affected
                   |,fedora-all/cinnamon=notaff |,fedora-all/cinnamon=notaff
                   |ected,fedora-all/ckeditor=a |ected,fedora-all/ckeditor=a
                   |ffected,fedora-all/cobbler= |ffected,fedora-all/cobbler=
                   |affected,fedora-all/couchdb |affected,fedora-all/couchdb
                   |=affected,fedora-all/cumin= |=affected,fedora-all/cumin=
                   |affected,fedora-all/django- |affected,fedora-all/django-
                   |typepad=affected,fedora-all |typepad=affected,fedora-all
                   |/dl=affected,fedora-all/dok |/dl=affected,fedora-all/dok
                   |uwiki=affected,fedora-all/d |uwiki=affected,fedora-all/d
                   |rupal6=affected,fedora-all/ |rupal6=affected,fedora-all/
                   |drupal7=affected,fedora-all |drupal7=affected,fedora-all
                   |/drupal7-jquery_update=affe |/drupal7-jquery_update=affe
                   |cted,fedora-all/fish=affect |cted,fedora-all/fish=affect
                   |ed,fedora-all/fityk=affecte |ed,fedora-all/fityk=notaffe
                   |d,fedora-all/freeipa=affect |cted,fedora-all/freeipa=aff
                   |ed,fedora-all/gallery3=affe |ected,fedora-all/gallery3=a
                   |cted,fedora-all/global=affe |ffected,fedora-all/global=a
                   |cted,fedora-all/graphite-we |ffected,fedora-all/graphite
                   |b=affected,fedora-all/hotot |-web=affected,fedora-all/ho
                   |=affected,fedora-all/ikiwik |tot=affected,fedora-all/iki
                   |i=affected,fedora-all/libgd |wiki=affected,fedora-all/li
                   |a=affected,fedora-all/media |bgda=affected,fedora-all/me
                   |wiki=affected,fedora-all/mo |diawiki=affected,fedora-all
                   |jomojo=affected,fedora-all/ |/mojomojo=affected,fedora-a
                   |nodejs-should=affected,fedo |ll/nodejs-should=affected,f
                   |ra-all/OpenLP=affected,fedo |edora-all/OpenLP=notaffecte
                   |ra-all/openslides=affected, |d,fedora-all/openslides=aff
                   |fedora-all/openteacher=affe |ected,fedora-all/openteache
                   |cted,fedora-all/orbited=aff |r=affected,fedora-all/orbit
                   |ected,fedora-all/perl-Mojol |ed=affected,fedora-all/perl
                   |icious=affected,fedora-all/ |-Mojolicious=affected,fedor
                   |phpPgAdmin=affected,fedora- |a-all/phpPgAdmin=affected,f
                   |all/python-backlash=affecte |edora-all/python-backlash=a
                   |d,fedora-all/python-django= |ffected,fedora-all/python-d
                   |affected,fedora-all/python- |jango=affected,fedora-all/p
                   |django-debug-toolbar=affect |ython-django-debug-toolbar=
                   |ed,fedora-all/python-django |affected,fedora-all/python-
                   |-typepadapp=affected,fedora |django-typepadapp=affected,
                   |-all/python-django14=affect |fedora-all/python-django14=
                   |ed,fedora-all/python-django |affected,fedora-all/python-
                   |15=affected,fedora-all/pyth |django15=affected,fedora-al
                   |on-flask-debugtoolbar=affec |l/python-flask-debugtoolbar
                   |ted,fedora-all/python-pebl= |=affected,fedora-all/python
                   |affected,fedora-all/python- |-pebl=affected,fedora-all/p
                   |sphinx=affected,fedora-all/ |ython-sphinx=affected,fedor
                   |python-tw-jquery=affected,f |a-all/python-tw-jquery=affe
                   |edora-all/python-tw2-jqplug |cted,fedora-all/python-tw2-
                   |ins-flot=affected,fedora-al |jqplugins-flot=affected,fed
                   |l/python-tw2-jquery=affecte |ora-all/python-tw2-jquery=a
                   |d,fedora-all/python-werkzeu |ffected,fedora-all/python-w
                   |g=affected,fedora-all/pytho |erkzeug=affected,fedora-all
                   |n-XStatic-jQuery=affected,f |/python-XStatic-jQuery=affe
                   |edora-all/python-backlash=a |cted,fedora-all/python-back
                   |ffected,fedora-all/python-d |lash=affected,fedora-all/py
                   |jango=affected,fedora-all/p |thon-django=affected,fedora
                   |ython-sphinx=affected,fedor |-all/python-sphinx=affected
                   |a-all/python-werkzeug=affec |,fedora-all/python-werkzeug
                   |ted,fedora-all/roundup=affe |=affected,fedora-all/roundu
                   |cted,fedora-all/rubygem-jqu |p=affected,fedora-all/rubyg
                   |ery-rails=affected,fedora-a |em-jquery-rails=affected,fe
                   |ll/sagemath=affected,fedora |dora-all/sagemath=affected,
                   |-all/sparkleshare=affected, |fedora-all/sparkleshare=aff
                   |fedora-all/spyder=affected, |ected,fedora-all/spyder=aff
                   |fedora-all/StarCluster=affe |ected,fedora-all/StarCluste
                   |cted,fedora-all/sticky-note |r=affected,fedora-all/stick
                   |s=affected,fedora-all/sugar |y-notes=affected,fedora-all
                   |-help=affected,fedora-all/v |/sugar-help=affected,fedora
                   |arnish-agent=affected,fedor |-all/varnish-agent=affected
                   |a-all/webacula=affected,fed |,fedora-all/webacula=affect
                   |ora-all/wesnoth=affected,fe |ed,fedora-all/wesnoth=affec
                   |dora-all/why3=affected,fedo |ted,fedora-all/why3=affecte
                   |ra-all/wordpress=affected,f |d,fedora-all/wordpress=affe
                   |edora-all/yelp-xsl=affected |cted,fedora-all/yelp-xsl=af
                   |,fedora-all/zabbix=affected |fected,fedora-all/zabbix=af
                   |,epel-all/drupal7-jquery_up |fected,epel-all/drupal7-jqu
                   |date=affected,epel-all/pyth |ery_update=affected,epel-al
                   |on-tw-jquery=affected,epel- |l/python-tw-jquery=affected
                   |all/python-tw2-jquery=affec |,epel-all/python-tw2-jquery
                   |ted,epel-all/python-XStatic |=affected,epel-all/python-X
                   |-jquery-ui=affected,openshi |Static-jquery-ui=affected,o
                   |ft-1/drupal6-jquery_ui-lib= |penshift-1/drupal6-jquery_u
                   |new,openshift-1/ruby193-rub |i-lib=new,openshift-1/ruby1
                   |ygem-jquery-rails=new,opens |93-rubygem-jquery-rails=new
                   |hift-enterprise-1/ruby193-r |,openshift-enterprise-1/rub
                   |ubygem-jquery-rails=new,ope |y193-rubygem-jquery-rails=n
                   |nshift-enterprise-2/ruby193 |ew,openshift-enterprise-2/r
                   |-rubygem-jquery-rails=new,r |uby193-rubygem-jquery-rails
                   |hscl-1.2/ror40-rubygem-jque |=new,rhscl-1.2/ror40-rubyge
                   |ry-rails=new,rhscl-1.2/ruby |m-jquery-rails=new,rhscl-1.
                   |193-rubygem-jquery-rails=ne |2/ruby193-rubygem-jquery-ra
                   |w,rhn_satellite_6/ruby193-r |ils=new,rhn_satellite_6/rub
                   |ubygem-jquery-ui-rails=new, |y193-rubygem-jquery-ui-rail
                   |sam-1/ruby193-rubygem-jquer |s=new,sam-1/ruby193-rubygem
                   |y-rails=new,cfme-5/ruby193- |-jquery-rails=new,cfme-5/ru
                   |rubygem-jquery-rails=new,op |by193-rubygem-jquery-rails=
                   |enstack-4/ruby193-rubygem-j |new,openstack-4/ruby193-rub
                   |query-rails=new,openstack-f |ygem-jquery-rails=new,opens
                   |oreman/ruby193-rubygem-jque |tack-foreman/ruby193-rubyge
                   |ry-ui-rails=new,rhel-6/ipa= |m-jquery-ui-rails=new,rhel-
                   |affected,rhel-6/python-sphi |6/ipa=affected,rhel-6/pytho
                   |nx=new,rhel-7/ipa=affected, |n-sphinx=new,rhel-7/ipa=aff
                   |rhel-7/python-sphinx=new,rh |ected,rhel-7/python-sphinx=
                   |el-7/yelp-xsl=new           |new,rhel-7/yelp-xsl=new

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Vk54uM3dqw&a=cc_unsubscribe