RHSA-2022:8848: Moderate: Red Hat OpenStack 16.2.4 (python-XStatic-Bootstrap-SCSS) security update

Q: What is the severity of RHSA-2022:8848?

RHSA-2022:8848 addresses a Cross-Site Scripting (XSS) vulnerability which poses a significant security risk.

Q: How do I fix RHSA-2022:8848?

To remediate RHSA-2022:8848, upgrade to the package version 3.4.1.0-2.el8 or later.

Q: What is the CVE associated with RHSA-2022:8848?

The vulnerability associated with RHSA-2022:8848 is identified as CVE-2019-8331.

Q: Which software package is affected by RHSA-2022:8848?

The affected software package in RHSA-2022:8848 is xstatic-bootstrap-scss-common.

Q: What does RHSA-2022:8848 address?

RHSA-2022:8848 addresses an XSS vulnerability in the tooltip or popover data-template attribute.

Published Dec 7, 2022

Updated

Bootstrap style library packaged for setuptools (easyinstall) / pip.<br>Security Fix(es):<br><li> XSS in the tooltip or popover data-template attribute (CVE-2019-8331)</li> For more details about the security issue(s), including the impact, a CVSS<br>score, acknowledgments, and other related information, refer to the CVE<br>page listed in the References section.

Affected Software

1 affected componentFixes available

redhat/xstatic-bootstrap-scss-common<3.4.1.0-2.el8

3.4.1.0-2.el8

Remediation

Event History

Jun 20, 2024

Advisory Published

via Red Hat·01:56 AM

Frequently Asked Questions

What is the severity of RHSA-2022:8848?

RHSA-2022:8848 addresses a Cross-Site Scripting (XSS) vulnerability which poses a significant security risk.

How do I fix RHSA-2022:8848?

To remediate RHSA-2022:8848, upgrade to the package version 3.4.1.0-2.el8 or later.

What is the CVE associated with RHSA-2022:8848?

The vulnerability associated with RHSA-2022:8848 is identified as CVE-2019-8331.

Which software package is affected by RHSA-2022:8848?

The affected software package in RHSA-2022:8848 is xstatic-bootstrap-scss-common.

What does RHSA-2022:8848 address?