Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 829380 (CVE-2021-45085, CVE-2021-45086, CVE-2021-45087, CVE-2021-45088) - <www-client/epiphany-40.5: multiple vulnerabilities
Summary: <www-client/epiphany-40.5: multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2021-45085, CVE-2021-45086, CVE-2021-45087, CVE-2021-45088
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://gitlab.gnome.org/GNOME/epipha...
Whiteboard: B4 [noglsa]
Keywords:
Depends on: 829395
Blocks:
  Show dependency tree
 
Reported: 2021-12-16 22:20 UTC by John Helmert III
Modified: 2021-12-17 18:24 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III gentoo-dev Security 2021-12-16 22:20:41 UTC
CVE-2021-45085:

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an about: page, as demonstrated by ephy-about:overview when a user visits an XSS payload page often enough to place that page on the Most Visited list.

CVE-2021-45086:

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

CVE-2021-45087:

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 when View Source mode or Reader mode is used, as demonstrated by a a page title.

CVE-2021-45088:

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an error page.

Please stabilize 40.5.
Comment 1 Larry the Git Cow gentoo-dev 2021-12-17 17:50:43 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e5cac5f9a9f48671d4c27f425952d7ac8bf7b5e3

commit e5cac5f9a9f48671d4c27f425952d7ac8bf7b5e3
Author:     Mart Raudsepp <leio@gentoo.org>
AuthorDate: 2021-12-17 17:50:36 +0000
Commit:     Mart Raudsepp <leio@gentoo.org>
CommitDate: 2021-12-17 17:50:36 +0000

    www-client/epiphany: security cleanup
    
    Bug: https://bugs.gentoo.org/829380
    Package-Manager: Portage-3.0.20, Repoman-3.0.2
    Signed-off-by: Mart Raudsepp <leio@gentoo.org>

 www-client/epiphany/Manifest             |  2 -
 www-client/epiphany/epiphany-40.2.ebuild | 86 --------------------------------
 www-client/epiphany/epiphany-40.3.ebuild | 85 -------------------------------
 3 files changed, 173 deletions(-)
Comment 2 John Helmert III gentoo-dev Security 2021-12-17 18:24:41 UTC
Thanks, all done!