{
  "schema_version": "1.7.0",
  "id": "MGASA-2016-0006",
  "published": "2016-01-12T09:13:53Z",
  "modified": "2016-01-16T11:44:56Z",
  "summary": "Updated bugzilla packages fix security vulnerability",
  "details": "Login names (usually an email address) longer than 127 characters are\nsilently truncated in MySQL which could cause the domain name of the email\naddress to be corrupted. An attacker could use this vulnerability to\ncreate an account with an email address different from the one originally\nrequested. The login name could then be automatically added to groups\nbased on the group's regular expression setting (CVE-2015-4499).\n\nDuring the generation of a dependency graph, the code for the HTML image\nmap is generated locally if a local dot installation is used. With escaped\nHTML characters in a bug summary, it is possible to inject unfiltered HTML\ncode in the map file which the CreateImagemap function generates. This\ncould be used for a cross-site scripting attack (CVE-2015-8508).\n\nIf an external HTML page contains a \"script\" tag with its src\nattribute pointing to a buglist in CSV format, some web browsers\nincorrectly try to parse the CSV file as valid JavaScript code. As the\nbuglist is generated based on the privileges of the user logged into\nBugzilla, the external page could collect confidential data contained in\nthe CSV file (CVE-2015-8509).\n\nThe bugzilla package has been updated to version 4.4.11, fixing these\nissues and a few other bugs.\n",
  "upstream": [
    "CVE-2015-4499",
    "CVE-2015-8508",
    "CVE-2015-8509"
  ],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://advisories.mageia.org/MGASA-2016-0006.html"
    },
    {
      "type": "REPORT",
      "url": "https://bugs.mageia.org/show_bug.cgi?id=16776"
    },
    {
      "type": "WEB",
      "url": "https://www.bugzilla.org/security/4.2.14/"
    },
    {
      "type": "WEB",
      "url": "https://www.bugzilla.org/security/4.2.15/"
    },
    {
      "type": "WEB",
      "url": "https://www.bugzilla.org/releases/4.4.10/release-notes.html"
    },
    {
      "type": "WEB",
      "url": "https://www.bugzilla.org/releases/4.4.11/release-notes.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/pipermail/package-announce/2016-January/175113.html"
    },
    {
      "type": "WEB",
      "url": "http://lwn.net/Vulnerabilities/671083/"
    }
  ],
  "affected": [
    {
      "package": {
        "ecosystem": "Mageia:5",
        "name": "bugzilla",
        "purl": "pkg:rpm/mageia/bugzilla?arch=source&distro=mageia-5"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.4.11-1.mga5"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    }
  ],
  "credits": [
    {
      "name": "Mageia",
      "type": "COORDINATOR",
      "contact": [
        "https://wiki.mageia.org/en/Packages_Security_Team"
      ]
    }
  ]
}
