Oval Definition:oval:org.opensuse.security:def:202026298
Revision Date:2022-05-22Version:1
Title:CVE-2020-26298
Description:

Redcarpet is a Ruby library for Markdown processing. In Redcarpet before version 3.5.1, there is an injection vulnerability which can enable a cross-site scripting attack. In affected versions no HTML escaping was being performed when processing quotes. This applies even when the `:escape_html` option was being used. This is fixed in version 3.5.1 by the referenced commit.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2020-26298
SUSE CVE-2020-26298
SUSE-SU-2021:3728-1
SUSE-SU-2021:3729-1
Platform(s):SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • AND
  • ardana-ansible-9.0+git.1628097238.f6cbb0e-3.29.1 is installed
  • OR ardana-monasca-9.0+git.1627995376.30bdf85-3.25.1 is installed
  • OR influxdb-1.3.8-4.6.1 is installed
  • OR kibana-4.6.6-4.12.1 is installed
  • OR openstack-cinder-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-api-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-backup-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-scheduler-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-volume-13.0.10~dev23-3.31.2 is installed
  • OR openstack-ec2-api-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-api-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-metadata-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-s3-7.1.1~dev6-3.3.2 is installed
  • OR openstack-heat-gbp-12.0.1~dev4-3.6.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1628179051.7d761bff-3.12.1 is installed
  • OR openstack-horizon-plugin-gbp-ui-12.0.1~dev5-3.6.1 is installed
  • OR openstack-keystone-14.2.1~dev7-3.25.2 is installed
  • OR openstack-neutron-gbp-14.0.1~dev19-3.28.1 is installed
  • OR openstack-nova-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-api-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-cells-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-compute-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-conductor-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-console-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-placement-api-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-scheduler-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev91-3.40.1 is installed
  • OR python-cinder-13.0.10~dev23-3.31.2 is installed
  • OR python-ec2api-7.1.1~dev6-3.3.2 is installed
  • OR python-eventlet-0.20.0-8.3.1 is installed
  • OR python-heat-gbp-12.0.1~dev4-3.6.1 is installed
  • OR python-horizon-plugin-gbp-ui-12.0.1~dev5-3.6.1 is installed
  • OR python-keystone-14.2.1~dev7-3.25.2 is installed
  • OR python-neutron-gbp-14.0.1~dev19-3.28.1 is installed
  • OR python-nova-18.3.1~dev91-3.40.1 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev24-3.25.1 is installed
  • OR venv-openstack-cinder-x86_64-13.0.10~dev23-3.28.1 is installed
  • OR venv-openstack-designate-x86_64-7.0.2~dev2-3.25.1 is installed
  • OR venv-openstack-glance-x86_64-17.0.1~dev30-3.23.1 is installed
  • OR venv-openstack-heat-x86_64-11.0.4~dev4-3.25.1 is installed
  • OR venv-openstack-horizon-x86_64-14.1.1~dev11-4.29.1 is installed
  • OR venv-openstack-ironic-x86_64-11.1.5~dev17-4.23.1 is installed
  • OR venv-openstack-keystone-x86_64-14.2.1~dev7-3.26.1 is installed
  • OR venv-openstack-magnum-x86_64-7.2.1~dev1-4.25.1 is installed
  • OR venv-openstack-manila-x86_64-7.4.2~dev60-3.31.1 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.25.1 is installed
  • OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.23.1 is installed
  • OR venv-openstack-neutron-x86_64-13.0.8~dev164-6.29.1 is installed
  • OR venv-openstack-nova-x86_64-18.3.1~dev91-3.29.1 is installed
  • OR venv-openstack-octavia-x86_64-3.2.3~dev7-4.25.1 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev15-3.25.1 is installed
  • OR venv-openstack-swift-x86_64-2.19.2~dev48-2.20.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND
  • crowbar-openstack-6.0+git.1630614261.26948f746-3.37.2 is installed
  • OR influxdb-1.3.8-4.6.1 is installed
  • OR kibana-4.6.6-4.12.1 is installed
  • OR openstack-cinder-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-api-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-backup-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-scheduler-13.0.10~dev23-3.31.2 is installed
  • OR openstack-cinder-volume-13.0.10~dev23-3.31.2 is installed
  • OR openstack-ec2-api-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-api-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-metadata-7.1.1~dev6-3.3.2 is installed
  • OR openstack-ec2-api-s3-7.1.1~dev6-3.3.2 is installed
  • OR openstack-heat-gbp-12.0.1~dev4-3.6.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1628179051.7d761bff-3.12.1 is installed
  • OR openstack-horizon-plugin-gbp-ui-12.0.1~dev5-3.6.1 is installed
  • OR openstack-keystone-14.2.1~dev7-3.25.2 is installed
  • OR openstack-neutron-gbp-14.0.1~dev19-3.28.1 is installed
  • OR openstack-nova-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-api-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-cells-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-compute-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-conductor-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-console-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-placement-api-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-scheduler-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev91-3.40.1 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev91-3.40.1 is installed
  • OR python-cinder-13.0.10~dev23-3.31.2 is installed
  • OR python-ec2api-7.1.1~dev6-3.3.2 is installed
  • OR python-eventlet-0.20.0-8.3.1 is installed
  • OR python-heat-gbp-12.0.1~dev4-3.6.1 is installed
  • OR python-horizon-plugin-gbp-ui-12.0.1~dev5-3.6.1 is installed
  • OR python-keystone-14.2.1~dev7-3.25.2 is installed
  • OR python-neutron-gbp-14.0.1~dev19-3.28.1 is installed
  • OR python-nova-18.3.1~dev91-3.40.1 is installed
  • OR ruby2.1-rubygem-puma-2.16.0-4.15.1 is installed
  • OR ruby2.1-rubygem-redcarpet-3.2.3-4.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • AND
  • ardana-ansible-8.0+git.1632499354.a56668f-3.82.1 is installed
  • OR ardana-monasca-8.0+git.1627997000.6c3bc04-3.30.1 is installed
  • OR documentation-suse-openstack-cloud-installation-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-operations-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-opsconsole-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-planning-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-security-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-supplement-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-admin-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-user-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-user-8.20210806-1.35.1 is installed
  • OR openstack-ec2-api-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-api-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-metadata-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-s3-5.0.1~dev12-4.9.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1628179051.7d761bf-3.24.1 is installed
  • OR python-Django-1.11.29-3.28.1 is installed
  • OR python-ec2api-5.0.1~dev12-4.9.1 is installed
  • OR python-monasca-common-2.3.1~dev4-4.9.1 is installed
  • OR venv-openstack-heat-x86_64-9.0.8~dev22-12.35.1 is installed
  • OR venv-openstack-horizon-x86_64-12.0.5~dev6-14.38.2 is installed
  • OR venv-openstack-monasca-x86_64-2.2.2~dev1-11.30.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND
  • documentation-suse-openstack-cloud-deployment-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-supplement-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-admin-8.20210806-1.35.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-user-8.20210806-1.35.1 is installed
  • OR openstack-ec2-api-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-api-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-metadata-5.0.1~dev12-4.9.1 is installed
  • OR openstack-ec2-api-s3-5.0.1~dev12-4.9.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1628179051.7d761bf-3.24.1 is installed
  • OR python-Django-1.11.29-3.28.1 is installed
  • OR python-ec2api-5.0.1~dev12-4.9.1 is installed
  • OR python-monasca-common-2.3.1~dev4-4.9.1 is installed
  • OR ruby2.1-rubygem-puma-2.16.0-3.15.1 is installed
  • OR ruby2.1-rubygem-redcarpet-3.2.3-3.3.1 is installed
    • BACK