Overview

Request 512022 accepted

- Update to 0.6.2:
_This is a vulnerability fix release._
Fixes a XSS issue in which the remote VNC server could inject
arbitrary HTML into the noVNC web page via the messages propagated
to the status field, such as the VNC server name.
This affects users of vnc_auto.html and vnc.html, as well as any
users of include/ui.js.

Loading...
Request History
Dirk Mueller's avatar

dirkmueller created request

- Update to 0.6.2:
_This is a vulnerability fix release._
Fixes a XSS issue in which the remote VNC server could inject
arbitrary HTML into the noVNC web page via the messages propagated
to the status field, such as the VNC server name.
This affects users of vnc_auto.html and vnc.html, as well as any
users of include/ui.js.


Factory Auto's avatar

factory-auto added factory-repo-checker as a reviewer

Please review build success


Factory Auto's avatar

factory-auto accepted review

Check script succeeded


Staging Bot's avatar

staging-bot added as a reviewer

Being evaluated by staging project "openSUSE:Factory:Staging:adi:66"


Staging Bot's avatar

staging-bot accepted review

Picked openSUSE:Factory:Staging:adi:66


Factory Repo Checker's avatar

factory-repo-checker accepted review

Builds for repo openSUSE:Factory:Staging:adi:66/standard


Saul Goodman's avatar

licensedigger accepted review

ok


Staging Bot's avatar

staging-bot accepted review

ready to accept


Staging Bot's avatar

staging-bot approved review

ready to accept


Yuchen Lin's avatar

maxlin_factory accepted request

Accept to openSUSE:Factory

openSUSE Build Service is sponsored by