Oval Definition:
oval:org.mitre.oval:def:8016
Revision Date
:
2014-06-23
Version
:
18
Title
:
DSA-1554 roundup -- insufficient input sanitising
Description
:
Roundup, an issue tracking system, fails to properly escape HTML input, allowing an attacker to inject client-side code (typically JavaScript) into a document that may be viewed in the victim's browser.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2008-1474
DSA-1554
Platform(s)
:
Debian GNU/Linux 4.0
Product(s)
:
roundup
Definition Synopsis
Debian GNU/Linux 4.0 is installed.
AND
Installed architecture is all
AND
roundup is earlier than 1.2.1-5+etch2
BACK