Описание
Security update for squidGuard
squidGuard was updated to fix one security issue.
This security issue was fixed:
- CVE-2015-8936: Reflected cross site scripting vulnerability because of insufficient escaping (bsc#985612).
This update was imported from the SUSE:SLE-12:Update update project.
Список пакетов
openSUSE Leap 42.1
squidGuard-1.4-3.1
squidGuard-doc-1.4-3.1
Ссылки
- E-Mail link for openSUSE-SU-2016:2580-1
- SUSE Security Ratings
Описание
Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link.
Затронутые продукты
openSUSE Leap 42.1:squidGuard-1.4-3.1
openSUSE Leap 42.1:squidGuard-doc-1.4-3.1
Ссылки
- CVE-2015-8936
- SUSE Bug 1040287
- SUSE Bug 985612