4 matches found
Security update for pagure (moderate)
openSUSE Security Update: Security update for pagure Announcement ID: openSUSE-SU-2020:1810-1 Rating: moderate References: 1176987 Cross-References: CVE-2019-11556 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...
openSUSE: Security Advisory for pagure (openSUSE-SU-2020:1765-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for pagure (moderate)
openSUSE Security Update: Security update for pagure Announcement ID: openSUSE-SU-2020:1765-1 Rating: moderate References: 1176987 Cross-References: CVE-2019-11556 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for pagure...
CVE-2019-11556
CVE-2019-11556 affects Pagure prior to 5.6, enabling a cross-site scripting (XSS) flaw in the templates/blame.html blame view. Public advisories (openSUSE/Mageia) confirm patches in Pagure updates (openSUSE-2020-1765, MGASA-2021-0206) that fix the XSS vulnerability. CVSS metrics: CVSS v2 base 4.3...