horizon (2:9.1.2-0ubuntu5.2) xenial-security; urgency=medium
[ Chris MacNaughton ]
* d/control: Update VCS paths for move to lp:~ubuntu-openstack-dev.
[ Marc Deslauriers ]
* SECURITY UPDATE: ensure next parameter is validated to prevent malicious
URL injection
- d/p/CVE-2020-29565.patch: Make sure the next URL is in the same origin
as Horizon before redirecting to it.
- CVE-2020-29565
Date: 2020-12-14 19:16:12.962175+00:00
Changed-By: Corey Bryant <corey.bry...@canonical.com>
Maintainer: Chuck Short <zulcssubu...@gmail.com>
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/horizon/2:9.1.2-0ubuntu5.2
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes