-
Task
-
Resolution: Done
-
Minor
-
None
-
None
-
False
-
-
False
-
OCM Core Sprint 251
Security Tracking Issue
Do not make this issue public.
Impact: Moderate
Reported Date: 01-Aug-2022
Resolve Bug By: 28-Jan-2023
In case the dates above are already past, please evaluate this bug in your next prioritization review and make a decision then. Remember to explicitly set CLOSED:WONTFIX if you decide not to fix this bug.
Please see the Security Errata Policy for further details: https://docs.engineering.redhat.com/x/9RBqB
Flaw:
CVE-2016-3709 libxml: Incorrect server side include parsing can lead to XSS
https://bugzilla.redhat.com/show_bug.cgi?id=2112766
Possible cross-site scripting vulnerability in libxml after commit 960f0e2.
https://mail.gnome.org/archives/xml/2018-January/msg00010.html