Bug #7483
closed
CVE-2014-3653 - Provisioning Templates Preview mode strips out text like <<FOO
Added by Aaron Stone about 10 years ago.
Updated over 6 years ago.
Description
I have Foreman 1.5.1. I will try to test this against 1.5.2 and 1.6.0, but if someone else can test it first that would be grand.
Steps to reproduce:
In Provisioning Templates, click New Template.
Put this into the code box:
test <<FOO > bar
Hello World
FOO
click Preview
click Code
Now the contents are:
test < bar
Hello World
FOO
That's a pretty big problem for templates that want to use shell redirection!
- Category set to Security
- Status changed from New to Assigned
- Assignee set to Aaron Stone
- Target version set to 1.7.3
- Translation missing: en.field_release set to 22
Thanks for the report. This has a security impact as it seems to be rendered as HTML, we're getting a CVE assigned. Please go ahead and submit your fix, we'll get it into 1.6.1.
- Status changed from Assigned to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/1777 added
- Pull request deleted (
- Pull request https://github.com/theforeman/foreman/pull/1778 added
- Pull request deleted (
https://github.com/theforeman/foreman/pull/1777)
- Subject changed from Provisioning Templates Preview mode strips out text like <<FOO to CVE-2014-3653 - Provisioning Templates Preview mode strips out text like <<FOO
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
- Related to Bug #8133: template diffs don't get displayed anymore added
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by 
Updated by Anonymous