SB2018073034 - Cross-site scripting in xapian-core (Alpine package)
Published: July 30, 2018
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Cross-site scripting (CVE-ID: CVE-2018-0499)
The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient HTML escaping by the Xapian::MSet::snippet() function, as defined in the queryparser/termgenerator_internal.cc code. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=2f7b790f099fa4c23fe0e0362586d59b99d475fa
- https://git.alpinelinux.org/aports/commit/?id=6f5d12d0e5811731ee74fa92ceab70343d62e99c
- https://git.alpinelinux.org/aports/commit/?id=48c580dca02aba0c33402c39af5efa9fc0d1f62b
- https://git.alpinelinux.org/aports/commit/?id=a2a2fde27c587ac5a5f28031010dce960f55b158