FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Bugzilla security issues

Affected packages
bugzilla44 < 4.4.12
bugzilla50 < 5.0.3

Details

VuXML ID 036d6c38-1c5b-11e6-b9e0-20cf30e32f6d
Discovery 2016-03-03
Entry 2016-05-17

Bugzilla Security Advisory

A specially crafted bug summary could trigger XSS in dependency graphs. Due to an incorrect parsing of the image map generated by the dot script, a specially crafted bug summary could trigger XSS in dependency graphs.

References

CVE Name CVE-2016-2803
URL https://bugzilla.mozilla.org/show_bug.cgi?id=1253263