Описание
Security update for pagure
This update for pagure fixes the following issues:
- CVE-2019-11556: Fixed XSS via the templates/blame.html blame view (boo#1176987)
Список пакетов
openSUSE Leap 15.1
pagure-5.5-lp151.2.3.1
pagure-ci-5.5-lp151.2.3.1
pagure-ev-5.5-lp151.2.3.1
pagure-loadjson-5.5-lp151.2.3.1
pagure-logcom-5.5-lp151.2.3.1
pagure-milters-5.5-lp151.2.3.1
pagure-mirror-5.5-lp151.2.3.1
pagure-theme-chameleon-5.5-lp151.2.3.1
pagure-theme-default-openSUSE-5.5-lp151.2.3.1
pagure-theme-default-upstream-5.5-lp151.2.3.1
pagure-theme-pagureio-5.5-lp151.2.3.1
pagure-theme-srcfpo-5.5-lp151.2.3.1
pagure-theme-upstream-5.5-lp151.2.3.1
pagure-webhook-5.5-lp151.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2020:1765-1
- SUSE Security Ratings
- SUSE Bug 1176987
- SUSE CVE CVE-2019-11556 page
Описание
Pagure before 5.6 allows XSS via the templates/blame.html blame view.
Затронутые продукты
openSUSE Leap 15.1:pagure-5.5-lp151.2.3.1
openSUSE Leap 15.1:pagure-ci-5.5-lp151.2.3.1
openSUSE Leap 15.1:pagure-ev-5.5-lp151.2.3.1
openSUSE Leap 15.1:pagure-loadjson-5.5-lp151.2.3.1
Ссылки
- CVE-2019-11556
- SUSE Bug 1176987