Advisories » MGASA-2013-0361

Updated ganglia-web package fixes security vulnerability

Publication date: 30 Nov 2013
Modification date: 30 Nov 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-6395

Description

XSS issue in ganglia-web makes it possible to execute JavaScript in
victims' browser after tricking the victim into opening a specially
crafted URL (CVE-2013-6395).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=11782
• http://www.rusty-ice.de/advisory/advisory_2013002.txt
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6395

SRPMS

3/core

• ganglia-web-3.5.4-2.1.mga3