Adds OSSA-2016-010 (CVE-2016-4428)

Change-Id: I682d36be196502568c64e8f2142d4555cdc1b0be Related-Bug: #1567673
2016-06-15 11:11:13 -04:00 · 2016-06-15 11:11:13 -04:00 · d155fe8c1a
commit d155fe8c1a
parent 756540a726
1 changed files with 50 additions and 0 deletions
--- a/ossa/OSSA-2016-010.yaml
+++ b/ossa/OSSA-2016-010.yaml
@ -0,0 +1,50 @@
+date: 2016-06-15
+
+id: OSSA-2016-010
+
+title: 'XSS in Horizon client side template'
+
+description: 'Beth Lancaster and Brandon Sawyers from Virginia Tech reported a
+    vulnerability in Horizon. By injecting Angularjs template in dashboard forms,
+    such as image''s description, an authenticated user may trigger a
+    cross-site-scripting vulnerability when another user browses the affected pages.
+    It may result in potential assets theft like user access credentials.
+    All Horizon setups are affected.'
+
+affected-products:
+
+  - product: horizon
+    version: "<=8.0.1, >=9.0.0 <=9.0.1"
+
+vulnerabilities:
+
+  - cve-id: CVE-2016-4428
+
+reporters:
+
+  - name: 'Beth Lancaster'
+    affiliation: Virginia Tech
+    reported:
+      - CVE-2016-4428
+
+  - name: 'Brandon Sawyers'
+    affiliation: Virginia Tech
+    reported:
+      - CVE-2016-4428
+
+issues:
+  links:
+    - https://bugs.launchpad.net/bugs/1567673
+
+reviews:
+
+  newton:
+    - https://review.openstack.org/329998
+
+  mitaka:
+    - https://review.openstack.org/329996
+
+  liberty:
+    - https://review.openstack.org/329997
+
+  type: gerrit