ID

VAR-202004-2191

CVE

CVE-2020-11022

TITLE

jQuery  Cross-site scripting vulnerability in

DESCRIPTION

In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. jQuery Exists in a cross-site scripting vulnerability.Information may be obtained and information may be tampered with. jQuery is an open source, cross-browser JavaScript library developed by American John Resig programmers. The library simplifies the operation between HTML and JavaScript, and has the characteristics of modularization and plug-in extension. The vulnerability stems from the lack of correct validation of client data in WEB applications. An attacker could exploit this vulnerability to execute client code. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The Public Key Infrastructure (PKI) Core contains fundamental packages required by Red Hat Certificate System. Bugs fixed (https://bugzilla.redhat.com/): 1376706 - restore SerialNumber tag in caManualRenewal xml 1399546 - CVE-2015-9251 jquery: Cross-site scripting via cross-domain ajax requests 1406505 - KRA ECC installation failed with shared tomcat 1601614 - CVE-2018-14040 bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute 1601617 - CVE-2018-14042 bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip 1666907 - CC: Enable AIA OCSP cert checking for entire cert chain 1668097 - CVE-2016-10735 bootstrap: XSS in the data-target attribute 1686454 - CVE-2019-8331 bootstrap: XSS in the tooltip or popover data-template attribute 1695901 - CVE-2019-10179 pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab 1701972 - CVE-2019-11358 jquery: Prototype pollution in object's prototype leading to denial of service, remote code execution, or property injection 1706521 - CA - SubjectAltNameExtInput does not display text fields to the enrollment page 1710171 - CVE-2019-10146 pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page 1721684 - Rebase pki-servlet-engine to 9.0.30 1724433 - caTransportCert.cfg contains MD2/MD5withRSA as signingAlgsAllowed. 1732565 - CVE-2019-10221 pki-core: Reflected XSS in getcookies?url= endpoint in CA 1732981 - When nuxwdog is enabled pkidaemon status shows instances as stopped. 1777579 - CVE-2020-1721 pki-core: KRA vulnerable to reflected XSS via the getPk12 page 1805541 - [RFE] CA Certificate Transparency with Embedded Signed Certificate Time stamp 1817247 - Upgrade to 10.8.3 breaks PKI Tomcat Server 1821851 - [RFE] Provide SSLEngine via JSSProvider for use with PKI 1822246 - JSS - NativeProxy never calls releaseNativeResources - Memory Leak 1824939 - JSS: add RSA PSS support - RHEL 8.3 1824948 - add RSA PSS support - RHEL 8.3 1825998 - CertificatePoliciesExtDefault MAX_NUM_POLICIES hardcoded limit 1828406 - CVE-2020-11022 jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method 1842734 - CVE-2019-10179 pki-core: pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab [rhel-8] 1842736 - CVE-2019-10146 pki-core: Reflected Cross-Site Scripting in 'path length' constraint field in CA's Agent page [rhel-8] 1843537 - Able to Perform PKI CLI operations like cert request and approval without nssdb password 1845447 - pkispawn fails in FIPS mode: AJP connector has secretRequired="true" but no secret 1850004 - CVE-2020-11023 jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution 1854043 - /usr/bin/PrettyPrintCert is failing with a ClassNotFoundException 1854959 - ca-profile-add with Netscape extensions nsCertSSLClient and nsCertEmail in the profile gets stuck in processing 1855273 - CVE-2020-15720 pki: Dogtag's python client does not validate certificates 1855319 - Not able to launch pkiconsole 1856368 - kra-key-generate request is failing 1857933 - CA Installation is failing with ncipher v12.30 HSM 1861911 - pki cli ca-cert-request-approve hangs over crmf request from client-cert-request 1869893 - Common certificates are missing in CS.cfg on shared PKI instance 1871064 - replica install failing during pki-ca component configuration 1873235 - pki ca-user-cert-add with secure port failed with 'SSL_ERROR_INAPPROPRIATE_FALLBACK_ALERT' 6. Package List: Red Hat Enterprise Linux AppStream (v. Description: Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. Description: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. JIRA issues fixed (https://issues.jboss.org/): JBEAP-23864 - (7.4.z) Upgrade xmlsec from 2.1.7.redhat-00001 to 2.2.3.redhat-00001 JBEAP-23865 - [GSS](7.4.z) Upgrade Apache CXF from 3.3.13.redhat-00001 to 3.4.10.redhat-00001 JBEAP-23866 - (7.4.z) Upgrade wss4j from 2.2.7.redhat-00001 to 2.3.3.redhat-00001 JBEAP-23926 - Tracker bug for the EAP 7.4.9 release for RHEL-7 JBEAP-24055 - (7.4.z) Upgrade HAL from 3.3.15.Final-redhat-00001 to 3.3.16.Final-redhat-00001 JBEAP-24081 - (7.4.z) Upgrade Elytron from 1.15.14.Final-redhat-00001 to 1.15.15.Final-redhat-00001 JBEAP-24095 - (7.4.z) Upgrade elytron-web from 1.9.2.Final-redhat-00001 to 1.9.3.Final-redhat-00001 JBEAP-24100 - [GSS](7.4.z) Upgrade Undertow from 2.2.20.SP1-redhat-00001 to 2.2.22.SP3-redhat-00001 JBEAP-24127 - (7.4.z) UNDERTOW-2123 - Update AsyncContextImpl.dispatch to use proper value JBEAP-24128 - (7.4.z) Upgrade Hibernate Search from 5.10.7.Final-redhat-00001 to 5.10.13.Final-redhat-00001 JBEAP-24132 - [GSS](7.4.z) Upgrade Ironjacamar from 1.5.3.SP2-redhat-00001 to 1.5.10.Final-redhat-00001 JBEAP-24147 - (7.4.z) Upgrade jboss-ejb-client from 4.0.45.Final-redhat-00001 to 4.0.49.Final-redhat-00001 JBEAP-24167 - (7.4.z) Upgrade WildFly Core from 15.0.19.Final-redhat-00001 to 15.0.21.Final-redhat-00002 JBEAP-24191 - [GSS](7.4.z) Upgrade remoting from 5.0.26.SP1-redhat-00001 to 5.0.27.Final-redhat-00001 JBEAP-24195 - [GSS](7.4.z) Upgrade JSF API from 3.0.0.SP06-redhat-00001 to 3.0.0.SP07-redhat-00001 JBEAP-24207 - (7.4.z) Upgrade Soteria from 1.0.1.redhat-00002 to 1.0.1.redhat-00003 JBEAP-24248 - (7.4.z) ELY-2492 - Upgrade sshd-common in Elytron from 2.7.0 to 2.9.2 JBEAP-24426 - (7.4.z) Upgrade Elytron from 1.15.15.Final-redhat-00001 to 1.15.16.Final-redhat-00001 JBEAP-24427 - (7.4.z) Upgrade WildFly Core from 15.0.21.Final-redhat-00002 to 15.0.22.Final-redhat-00001 7. Solution: For information on upgrading Ansible Tower, reference the Ansible Tower Upgrade and Migration Guide: https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/ index.html 4. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat AMQ Interconnect 1.9.0 release and security update Advisory ID: RHSA-2020:4211-01 Product: Red Hat JBoss AMQ Interconnect Advisory URL: https://access.redhat.com/errata/RHSA-2020:4211 Issue date: 2020-10-08 CVE Names: CVE-2020-7656 CVE-2020-11022 CVE-2020-11023 ==================================================================== 1. Summary: Red Hat AMQ Interconnect 1.9.0 release packages are available for A-MQ Interconnect on RHEL 6, 7, and 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: 6ComputeNode-RH6-A-MQ-Interconnect-1 - noarch, x86_64 6Server-RH6-A-MQ-Interconnect-1 - i386, noarch, x86_64 6Workstation-RH6-A-MQ-Interconnect-1 - i386, noarch, x86_64 7ComputeNode-RH7-A-MQ-Interconnect-1 - noarch, x86_64 7Server-RH7-A-MQ-Interconnect-1 - noarch, x86_64 7Workstation-RH7-A-MQ-Interconnect-1 - noarch, x86_64 8Base-A-MQ-Interconnect-1 - noarch, x86_64 3. Description: Red Hat AMQ Interconnect is a component of the AMQ 7 product family. AMQ Interconnect provides flexible routing of messages between AMQP-enabled endpoints, whether they are clients, servers, brokers, or any other entity that can send or receive standard AMQP messages. This release of Red Hat AMQ Interconnect 1.9.0 serves as a replacement for Red Hat AMQ Interconnect 1.8.0 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Security Fix(es): * jQuery: allows XSS via the load method (CVE-2020-7656) * jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method (CVE-2020-11022) * jQuery: passing HTML containing <option> elements to manipulation methods could result in untrusted code execution (CVE-2020-11023) For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. JIRA issues fixed (https://issues.jboss.org/): ENTMQIC-2448 - Allow specifying address/source/target to be used for a multitenant listener ENTMQIC-2455 - Allow AMQP open properties to be supplemented from connector configuration ENTMQIC-2460 - Adding new config address, autolinks and link routes become slower as more get added ENTMQIC-2481 - Unable to delete listener with http enabled ENTMQIC-2485 - The VhostNamePatterns does not work in OCP env ENTMQIC-2492 - router drops TransactionalState on produced messages on link routes 7. Package List: 6ComputeNode-RH6-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el6_10.src.rpm noarch: qpid-dispatch-console-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-docs-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-tools-1.13.0-3.el6_10.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el6_10.x86_64.rpm qpid-dispatch-router-1.13.0-3.el6_10.x86_64.rpm 6Server-RH6-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el6_10.src.rpm i386: qpid-dispatch-debuginfo-1.13.0-3.el6_10.i686.rpm qpid-dispatch-router-1.13.0-3.el6_10.i686.rpm noarch: qpid-dispatch-console-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-docs-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-tools-1.13.0-3.el6_10.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el6_10.x86_64.rpm qpid-dispatch-router-1.13.0-3.el6_10.x86_64.rpm 6Workstation-RH6-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el6_10.src.rpm i386: qpid-dispatch-debuginfo-1.13.0-3.el6_10.i686.rpm qpid-dispatch-router-1.13.0-3.el6_10.i686.rpm noarch: qpid-dispatch-console-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-docs-1.13.0-3.el6_10.noarch.rpm qpid-dispatch-tools-1.13.0-3.el6_10.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el6_10.x86_64.rpm qpid-dispatch-router-1.13.0-3.el6_10.x86_64.rpm 7ComputeNode-RH7-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el7.src.rpm noarch: qpid-dispatch-console-1.13.0-3.el7.noarch.rpm qpid-dispatch-docs-1.13.0-3.el7.noarch.rpm qpid-dispatch-tools-1.13.0-3.el7.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el7.x86_64.rpm qpid-dispatch-router-1.13.0-3.el7.x86_64.rpm 7Server-RH7-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el7.src.rpm noarch: qpid-dispatch-console-1.13.0-3.el7.noarch.rpm qpid-dispatch-docs-1.13.0-3.el7.noarch.rpm qpid-dispatch-tools-1.13.0-3.el7.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el7.x86_64.rpm qpid-dispatch-router-1.13.0-3.el7.x86_64.rpm 7Workstation-RH7-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el7.src.rpm noarch: qpid-dispatch-console-1.13.0-3.el7.noarch.rpm qpid-dispatch-docs-1.13.0-3.el7.noarch.rpm qpid-dispatch-tools-1.13.0-3.el7.noarch.rpm x86_64: qpid-dispatch-debuginfo-1.13.0-3.el7.x86_64.rpm qpid-dispatch-router-1.13.0-3.el7.x86_64.rpm 8Base-A-MQ-Interconnect-1: Source: qpid-dispatch-1.13.0-3.el8.src.rpm noarch: qpid-dispatch-console-1.13.0-3.el8.noarch.rpm qpid-dispatch-docs-1.13.0-3.el8.noarch.rpm qpid-dispatch-tools-1.13.0-3.el8.noarch.rpm x86_64: qpid-dispatch-debugsource-1.13.0-3.el8.x86_64.rpm qpid-dispatch-router-1.13.0-3.el8.x86_64.rpm qpid-dispatch-router-debuginfo-1.13.0-3.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 8. References: https://access.redhat.com/security/cve/CVE-2020-7656 https://access.redhat.com/security/cve/CVE-2020-11022 https://access.redhat.com/security/cve/CVE-2020-11023 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.interconnect&downloadType=distributions&version=1.9.0 https://access.redhat.com/documentation/en-us/red_hat_amq/ 9. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX365P9zjgjWX9erEAQhhZw/+K0DanwyxyCuUqIhXUzKL4TutmZLV0ONZ AQpnQ4ZdZxmfxkx5EImuKVFTac9sWJv8sKAE295nsOzkSCnfvvkDhsUp285V/AkE FBLp6j5wEEucUMSeWNz9LtFke6g2xZfqOoYU93Z9hk0FxAH1BLTuiWNYTC/XSjrK KHeJOpW1+cLdRyDAMT3w7giMoN2k4zo8/qUr1NlmNK8BT5+iDU4PYi/yH6liUTDa M3LoQPUIBzHVNIH/PxiJNsgV7cCzMUoodeam3DgqjXWhQ2/tJ5T3jNfTloynKhcV 39PsRf5VGAAWXqMxDXPHdgNqIxxvW51S0EGlnwMH5hQmcj2OgWhc47LDSXkWw9dM Atp4v4RoC+NvvOaC2Y8/KTC0EM5QTJxBziBsIO3PyTuuwDH2yIFY2b7iW/rz9Cb/ Vi03xbsUdDXvdlZz1Z4Ba6xDUM5+otsPOWWmWtTxJD9eEH0kFv7O2+xHIPdO1J2G PsRa/Zd6AtAjbuid972MIkC3aVeKuAqc+/pKvObky7FNl/lSL5YJtydqRPgSlqvy H/41cZGjGbpXUPg+7llDjdor729EcoG1fcUXtHs69Wr8AZgoqRgnXaVRy5z5lUn+ hEoMR9PVyT2ivMkvqNsiAA0XgDEO0KBh8Vmnl56R6Ql+VxdaOXsVs2iffp6sW7kM xMEHmT+D6Rw=G1iH -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

AFFECTED PRODUCTS

CVSS

PROBLEMTYPE DATA

THREAT TYPE

remote

TYPE

code execution, xss

PATCH

EXTERNAL IDS

REFERENCES

CREDITS

Red Hat

SOURCES

LAST UPDATE DATE

2025-06-27T21:27:01.883000+00:00

SOURCES UPDATE DATE

SOURCES RELEASE DATE