[Bug 1166064] CVE-2012-6662 jquery-ui: XSS vulnerability in default content in Tooltip widget

bugzilla at redhat.com bugzilla at redhat.com
Fri Nov 21 16:18:36 UTC 2014


https://bugzilla.redhat.com/show_bug.cgi?id=1166064

Vasyl Kaigorodov <vkaigoro at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=moderate,public=2012 |impact=moderate,public=2012
                   |1127,reported=20141120,sour |1127,reported=20141120,sour
                   |ce=internet,cvss2=4.3/AV:N/ |ce=internet,cvss2=4.3/AV:N/
                   |AC:M/Au:N/C:N/I:P/A:N,fedor |AC:M/Au:N/C:N/I:P/A:N,fedor
                   |a-all/asterisk-gui=affected |a-all/asterisk-gui=affected
                   |,fedora-all/beacon=affected |,fedora-all/beacon=affected
                   |,fedora-all/blender=affecte |,fedora-all/blender=affecte
                   |d,fedora-all/bodhi=affected |d,fedora-all/bodhi=affected
                   |,fedora-all/cacti=affected, |,fedora-all/cacti=affected,
                   |fedora-all/calibre=affected |fedora-all/calibre=affected
                   |,fedora-all/cinnamon=notaff |,fedora-all/cinnamon=notaff
                   |ected,fedora-all/ckeditor=a |ected,fedora-all/ckeditor=a
                   |ffected,fedora-all/cobbler= |ffected,fedora-all/cobbler=
                   |affected,fedora-all/couchdb |affected,fedora-all/couchdb
                   |=affected,fedora-all/cumin= |=affected,fedora-all/cumin=
                   |affected,fedora-all/django- |affected,fedora-all/django-
                   |typepad=affected,fedora-all |typepad=affected,fedora-all
                   |/dl=affected,fedora-all/dok |/dl=notaffected,fedora-all/
                   |uwiki=affected,fedora-all/d |dokuwiki=affected,fedora-al
                   |rupal6=affected,fedora-all/ |l/drupal6=affected,fedora-a
                   |drupal7=affected,fedora-all |ll/drupal7=affected,fedora-
                   |/drupal7-jquery_update=affe |all/drupal7-jquery_update=a
                   |cted,fedora-all/fish=affect |ffected,fedora-all/fish=aff
                   |ed,fedora-all/fityk=notaffe |ected,fedora-all/fityk=nota
                   |cted,fedora-all/freeipa=aff |ffected,fedora-all/freeipa=
                   |ected,fedora-all/gallery3=a |affected,fedora-all/gallery
                   |ffected,fedora-all/global=a |3=affected,fedora-all/globa
                   |ffected,fedora-all/graphite |l=affected,fedora-all/graph
                   |-web=affected,fedora-all/ho |ite-web=affected,fedora-all
                   |tot=affected,fedora-all/iki |/hotot=affected,fedora-all/
                   |wiki=affected,fedora-all/li |ikiwiki=affected,fedora-all
                   |bgda=affected,fedora-all/me |/libgda=affected,fedora-all
                   |diawiki=affected,fedora-all |/mediawiki=affected,fedora-
                   |/mojomojo=affected,fedora-a |all/mojomojo=affected,fedor
                   |ll/nodejs-should=affected,f |a-all/nodejs-should=affecte
                   |edora-all/OpenLP=notaffecte |d,fedora-all/OpenLP=notaffe
                   |d,fedora-all/openslides=aff |cted,fedora-all/openslides=
                   |ected,fedora-all/openteache |affected,fedora-all/opentea
                   |r=affected,fedora-all/orbit |cher=affected,fedora-all/or
                   |ed=affected,fedora-all/perl |bited=affected,fedora-all/p
                   |-Mojolicious=affected,fedor |erl-Mojolicious=affected,fe
                   |a-all/phpPgAdmin=affected,f |dora-all/phpPgAdmin=affecte
                   |edora-all/python-backlash=a |d,fedora-all/python-backlas
                   |ffected,fedora-all/python-d |h=affected,fedora-all/pytho
                   |jango=affected,fedora-all/p |n-django=affected,fedora-al
                   |ython-django-debug-toolbar= |l/python-django-debug-toolb
                   |affected,fedora-all/python- |ar=affected,fedora-all/pyth
                   |django-typepadapp=affected, |on-django-typepadapp=affect
                   |fedora-all/python-django14= |ed,fedora-all/python-django
                   |affected,fedora-all/python- |14=affected,fedora-all/pyth
                   |django15=affected,fedora-al |on-django15=affected,fedora
                   |l/python-flask-debugtoolbar |-all/python-flask-debugtool
                   |=affected,fedora-all/python |bar=affected,fedora-all/pyt
                   |-pebl=affected,fedora-all/p |hon-pebl=affected,fedora-al
                   |ython-sphinx=affected,fedor |l/python-sphinx=affected,fe
                   |a-all/python-tw-jquery=affe |dora-all/python-tw-jquery=a
                   |cted,fedora-all/python-tw2- |ffected,fedora-all/python-t
                   |jqplugins-flot=affected,fed |w2-jqplugins-flot=affected,
                   |ora-all/python-tw2-jquery=a |fedora-all/python-tw2-jquer
                   |ffected,fedora-all/python-w |y=affected,fedora-all/pytho
                   |erkzeug=affected,fedora-all |n-werkzeug=affected,fedora-
                   |/python-XStatic-jQuery=affe |all/python-XStatic-jQuery=a
                   |cted,fedora-all/python-back |ffected,fedora-all/python-b
                   |lash=affected,fedora-all/py |acklash=affected,fedora-all
                   |thon-django=affected,fedora |/python-django=affected,fed
                   |-all/python-sphinx=affected |ora-all/python-sphinx=affec
                   |,fedora-all/python-werkzeug |ted,fedora-all/python-werkz
                   |=affected,fedora-all/roundu |eug=affected,fedora-all/rou
                   |p=affected,fedora-all/rubyg |ndup=affected,fedora-all/ru
                   |em-jquery-rails=affected,fe |bygem-jquery-rails=affected
                   |dora-all/sagemath=affected, |,fedora-all/sagemath=affect
                   |fedora-all/sparkleshare=aff |ed,fedora-all/sparkleshare=
                   |ected,fedora-all/spyder=aff |affected,fedora-all/spyder=
                   |ected,fedora-all/StarCluste |affected,fedora-all/StarClu
                   |r=affected,fedora-all/stick |ster=affected,fedora-all/st
                   |y-notes=affected,fedora-all |icky-notes=affected,fedora-
                   |/sugar-help=affected,fedora |all/sugar-help=affected,fed
                   |-all/varnish-agent=affected |ora-all/varnish-agent=affec
                   |,fedora-all/webacula=affect |ted,fedora-all/webacula=aff
                   |ed,fedora-all/wesnoth=affec |ected,fedora-all/wesnoth=af
                   |ted,fedora-all/why3=affecte |fected,fedora-all/why3=affe
                   |d,fedora-all/wordpress=affe |cted,fedora-all/wordpress=a
                   |cted,fedora-all/yelp-xsl=af |ffected,fedora-all/yelp-xsl
                   |fected,fedora-all/zabbix=af |=affected,fedora-all/zabbix
                   |fected,epel-all/drupal7-jqu |=affected,epel-all/drupal7-
                   |ery_update=affected,epel-al |jquery_update=affected,epel
                   |l/python-tw-jquery=affected |-all/python-tw-jquery=affec
                   |,epel-all/python-tw2-jquery |ted,epel-all/python-tw2-jqu
                   |=affected,epel-all/python-X |ery=affected,epel-all/pytho
                   |Static-jquery-ui=affected,o |n-XStatic-jquery-ui=affecte
                   |penshift-1/drupal6-jquery_u |d,openshift-1/drupal6-jquer
                   |i-lib=new,openshift-1/ruby1 |y_ui-lib=new,openshift-1/ru
                   |93-rubygem-jquery-rails=new |by193-rubygem-jquery-rails=
                   |,openshift-enterprise-1/rub |new,openshift-enterprise-1/
                   |y193-rubygem-jquery-rails=n |ruby193-rubygem-jquery-rail
                   |ew,openshift-enterprise-2/r |s=new,openshift-enterprise-
                   |uby193-rubygem-jquery-rails |2/ruby193-rubygem-jquery-ra
                   |=new,rhscl-1.2/ror40-rubyge |ils=new,rhscl-1.2/ror40-rub
                   |m-jquery-rails=new,rhscl-1. |ygem-jquery-rails=new,rhscl
                   |2/ruby193-rubygem-jquery-ra |-1.2/ruby193-rubygem-jquery
                   |ils=new,rhn_satellite_6/rub |-rails=new,rhn_satellite_6/
                   |y193-rubygem-jquery-ui-rail |ruby193-rubygem-jquery-ui-r
                   |s=new,sam-1/ruby193-rubygem |ails=new,sam-1/ruby193-ruby
                   |-jquery-rails=new,cfme-5/ru |gem-jquery-rails=new,cfme-5
                   |by193-rubygem-jquery-rails= |/ruby193-rubygem-jquery-rai
                   |new,openstack-4/ruby193-rub |ls=new,openstack-4/ruby193-
                   |ygem-jquery-rails=new,opens |rubygem-jquery-rails=new,op
                   |tack-foreman/ruby193-rubyge |enstack-foreman/ruby193-rub
                   |m-jquery-ui-rails=new,rhel- |ygem-jquery-ui-rails=new,rh
                   |6/ipa=affected,rhel-6/pytho |el-6/ipa=affected,rhel-6/py
                   |n-sphinx=new,rhel-7/ipa=aff |thon-sphinx=new,rhel-7/ipa=
                   |ected,rhel-7/python-sphinx= |affected,rhel-7/python-sphi
                   |new,rhel-7/yelp-xsl=new     |nx=new,rhel-7/yelp-xsl=new



-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=CP6djaoBKZ&a=cc_unsubscribe



More information about the perl-devel mailing list