50 lines
1.2 KiB
YAML
50 lines
1.2 KiB
YAML
date: 2020-12-03
|
|
|
|
id: OSSA-2020-008
|
|
|
|
title: Open redirect in workflow forms
|
|
|
|
description: >
|
|
Pritam Singh (Red Hat) reported a vulnerability in Horizon's workflow
|
|
forms. Previously there was a lack of validation on the "next" parameter,
|
|
which would allow someone to supply a malicious URL in Horizon that can
|
|
cause an automatic redirect to the provided malicious URL.
|
|
|
|
affected-products:
|
|
- product: horizon
|
|
version: ' <15.3.2, >=16.0.0 <16.2.1, >=17.0.0 <18.3.3, >=18.4.0 <18.6.0'
|
|
|
|
vulnerabilities:
|
|
- cve-id: CVE-2020-29565
|
|
|
|
reporters:
|
|
- name: Pritam Singh
|
|
affiliation: Red Hat
|
|
reported:
|
|
- CVE-2020-29565
|
|
|
|
issues:
|
|
links:
|
|
- https://launchpad.net/bugs/1865026
|
|
|
|
reviews:
|
|
victoria:
|
|
- https://review.opendev.org/750207
|
|
ussuri:
|
|
- https://review.opendev.org/752703
|
|
train:
|
|
- https://review.opendev.org/758841
|
|
stein:
|
|
- https://review.opendev.org/758843
|
|
rocky:
|
|
- https://review.opendev.org/765945
|
|
queens:
|
|
- https://review.opendev.org/765950
|
|
pike:
|
|
- https://review.opendev.org/765951
|
|
|
|
notes:
|
|
- The stable/rocky, stable/queens, and stable/pike branches are under
|
|
extended maintenance and will receive no new point releases, but patches
|
|
for them are provided as a courtesy.
|