Backport of CVE-2015-3219 fix into Horizon
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mirantis OpenStack |
Fix Released
|
Critical
|
Timur Sufiev | ||
5.1.x |
Invalid
|
Critical
|
MOS Maintenance | ||
6.0.x |
Fix Released
|
Critical
|
Alexey Khivin |
Bug Description
Title: XSS in Horizon Heat stack creation
Reporter: Nikita Konovalov (Mirantis)
Products: Horizon
Affects: 2014.2 versions through 2014.2.3 and version 2015.1.0
Description:
Nikita Konovalov from Mirantis reported a vulnerability in Horizon. By
tricking a Horizon user into using a malicious template in the
Orchestration/Stack section of Horizon, a remote attacker may trigger a
cross-site-
result in potential assets theft like user access credentials. Only
setups exposing the orchestration dashboard in Horizon are affected.
Proposed patch:
See attached patches. Unless a flaw is discovered in them, these patches
will be merged to stable/juno, stable/kilo and master on the public
disclosure date.
CVE: CVE-2015-3219
Proposed public disclosure date/time:
2015-06-09, 1500UTC
Please do not make the issue public (or release public patches) before
this coordinated embargo date.
Changed in mos: | |
milestone: | none → 6.1 |
assignee: | nobody → Timur Sufiev (tsufiev-x) |
Changed in mos: | |
status: | New → Fix Committed |
Changed in mos: | |
status: | Fix Committed → Fix Released |
tags: | added: feature-security |
The fix being backported is at https:/ /review. fuel-infra. org/#/c/ 7530/