Candidate: CVE-2018-1000088
PublicDate: 2018-03-13 15:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000088
 https://github.com/doorkeeper-gem/doorkeeper/issues/969
 https://github.com/doorkeeper-gem/doorkeeper/pull/970
Description:
 Doorkeeper version 2.1.0 through 4.2.5 contains a Cross Site Scripting
 (XSS) vulnerability in web view's OAuth app form, user authorization prompt
 web view that can result in Stored XSS on the OAuth Client's name will
 cause users interacting with it will execute payload. This attack appear to
 be exploitable via The victim must be tricked to click an opaque link to
 the web view that runs the XSS payload. A malicious version virtually
 indistinguishable from a normal link.. This vulnerability appears to have
 been fixed in 4.2.6, 4.3.0.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891069
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N [6.1 MEDIUM]


Patches_ruby-doorkeeper:
upstream_ruby-doorkeeper: needs-triage
precise/esm_ruby-doorkeeper: DNE
trusty_ruby-doorkeeper: DNE
trusty/esm_ruby-doorkeeper: DNE
xenial_ruby-doorkeeper: ignored (end of standard support, was needs-triage)
artful_ruby-doorkeeper: ignored (reached end-of-life)
bionic_ruby-doorkeeper: not-affected (4.3.1-1)
cosmic_ruby-doorkeeper: ignored (reached end-of-life)
disco_ruby-doorkeeper: not-affected (4.3.1-1)
eoan_ruby-doorkeeper: not-affected (4.3.1-1)
focal_ruby-doorkeeper: not-affected (4.3.1-1)
groovy_ruby-doorkeeper: not-affected (4.3.1-1)
hirsute_ruby-doorkeeper: not-affected (4.3.1-1)
impish_ruby-doorkeeper: not-affected (4.3.1-1)
jammy_ruby-doorkeeper: not-affected (4.3.1-1)
devel_ruby-doorkeeper: not-affected (4.3.1-1)