Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP1:Update
squidGuard.2767
xss_fix_02_2015.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File xss_fix_02_2015.patch of Package squidGuard.2767
CVE: CVE-2015-8936 URL: http://seclists.org/oss-sec/2016/q2/569 Index: squidGuard-1.4/samples/squidGuard.cgi.in =================================================================== --- squidGuard-1.4.orig/samples/squidGuard.cgi.in +++ squidGuard-1.4/samples/squidGuard.cgi.in @@ -317,6 +317,9 @@ if ($targetgroup eq "in-addr") { showinaddr($targetgroup,$protocol,$address,$port,$path); } +$url =~ s/</</g ; +$url =~ s/>/>/g ; + status("403 Forbidden"); expires(0); print "Content-type: text/html\n\n";
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor