According to Russell's message - this bug only affects the essex/stable branch.. No backport is necessary I guess..<div><br></div><div>Also - <a href="https://github.com/openstack/horizon/tree/stable/essex">https://github.com/openstack/horizon/tree/stable/essex</a> shows the most recent commit is the commit/fix he linked to..</div>
<div><br></div><div>Thanks,</div><div>Kiall<br>
<br><br><div class="gmail_quote">On Thu, Sep 13, 2012 at 4:17 PM, andi abes <span dir="ltr"><<a href="mailto:andi.abes@gmail.com" target="_blank">andi.abes@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Has a fix for this been backported to essex/stable branch?<br>
<div class="HOEnZb"><div class="h5"><br>
On Thu, Aug 30, 2012 at 11:35 AM, Russell Bryant <<a href="mailto:rbryant@redhat.com">rbryant@redhat.com</a>> wrote:<br>
> -----BEGIN PGP SIGNED MESSAGE-----<br>
> Hash: SHA1<br>
><br>
> This advisory included the wrong CVE. It was CVE-2012-3540. Sorry<br>
> about that.<br>
><br>
> On 08/30/2012 11:10 AM, Russell Bryant wrote:<br>
>> OpenStack Security Advisory: 2012-012 CVE: CVE-2012-3542<br>
><br>
> This should have been CVE-2012-3540<br>
><br>
>> Date: August 30, 2012 Title: Open redirect through 'next'<br>
>> parameter Impact: Medium Reporter: Thomas Biege (SUSE) Products:<br>
>> Horizon Affects: Essex (2012.1)<br>
>><br>
>> Description: Thomas Biege from SUSE reported a vulnerability in<br>
>> Horizon authentication mechanism. By adding a malicious 'next'<br>
>> parameter to a Horizon authentication URL and enticing an<br>
>> unsuspecting user to follow it, the victim might get redirected<br>
>> after authentication to a malicious site where useful information<br>
>> could be extracted. Only setups running Essex are affected.<br>
>><br>
>> Fixes: 2012.1:<br>
>> <a href="https://github.com/openstack/horizon/commit/35eada8a27323c0f83c400177797927aba6bc99b" target="_blank">https://github.com/openstack/horizon/commit/35eada8a27323c0f83c400177797927aba6bc99b</a><br>
>><br>
>> References:<br>
>> <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-3542" target="_blank">http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-3542</a><br>
><br>
> This should have been:<br>
><br>
> <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-3540" target="_blank">http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-3540</a><br>
><br>
>> <a href="https://bugs.launchpad.net/horizon/+bug/1039077" target="_blank">https://bugs.launchpad.net/horizon/+bug/1039077</a><br>
>><br>
>> Notes: This fix will be included in a future Essex (2012.1)<br>
>> release.<br>
><br>
> - --<br>
> Russell Bryant<br>
> OpenStack Vulnerability Management Team<br>
> -----BEGIN PGP SIGNATURE-----<br>
> Version: GnuPG v1.4.12 (GNU/Linux)<br>
> Comment: Using GnuPG with Mozilla - <a href="http://www.enigmail.net/" target="_blank">http://www.enigmail.net/</a><br>
><br>
> iEYEARECAAYFAlA/iDEACgkQFg9ft4s9SAbPBQCgndIk58K5ZF71PCxmWfDjV9MO<br>
> 4yoAoJDGBeqC4TbJnyo+AsEeQYeTQEe6<br>
> =zO6p<br>
> -----END PGP SIGNATURE-----<br>
><br>
> _______________________________________________<br>
> Mailing list: <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
> Post to : <a href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a><br>
> Unsubscribe : <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
> More help : <a href="https://help.launchpad.net/ListHelp" target="_blank">https://help.launchpad.net/ListHelp</a><br>
<br>
_______________________________________________<br>
Mailing list: <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
Post to : <a href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a><br>
Unsubscribe : <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
More help : <a href="https://help.launchpad.net/ListHelp" target="_blank">https://help.launchpad.net/ListHelp</a><br>
</div></div></blockquote></div><br></div>