Vulnerability CVE-2019-17022: Information

Description

When pasting a &lt;style&gt; tag from the clipboard into a rich text editor, the CSS sanitizer does not escape &lt; and &gt; characters. Because the resulting string is pasted directly into the text node of the element this does not result in a direct injection into the webpage; however, if a webpage subsequently copies the node's innerHTML, assigning it to another innerHTML, this would result in an XSS vulnerability. Two WYSIWYG editors were identified with this behavior, more may exist. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.

Severity: MEDIUM (6.1) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

URL: https://nvd.nist.gov/vuln/detail/CVE-2019-17022
Published: Jan. 9, 2020
Modified: Jan. 13, 2020
Error type identifier: CWE-79

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
firefoxsisyphus72.0.2-alt1126.0.1-alt1ALT-PU-2020-1110-1244791Fixed
firefoxp1072.0.2-alt1118.0.2-alt0.p10.1ALT-PU-2020-1110-1244791Fixed
firefoxp972.0.2-alt0.1.p9105.0.1-alt0.c9.1ALT-PU-2020-1617-1245893Fixed
firefoxc10f172.0.2-alt1112.0.2-alt0.p10.1ALT-PU-2020-1110-1244791Fixed
firefoxc9f272.0.2-alt0.1.p9105.0.1-alt0.c9.1ALT-PU-2020-1617-1245893Fixed
firefoxp1172.0.2-alt1126.0.1-alt1ALT-PU-2020-1110-1244791Fixed
firefox-esrsisyphus68.4.1-alt1115.11.0-alt1ALT-PU-2020-1013-1243925Fixed
firefox-esrp1068.4.1-alt1115.11.0-alt1ALT-PU-2020-1013-1243925Fixed
firefox-esrp968.4.1-alt1102.11.0-alt0.c9.1ALT-PU-2020-1032-1243942Fixed
firefox-esrp868.4.1-alt0.M80P.168.4.1-alt0.M80P.1ALT-PU-2020-1051-1244114Fixed
firefox-esrc10f168.4.1-alt1115.9.1-alt0.c10.1ALT-PU-2020-1013-1243925Fixed
firefox-esrc9f278.7.1-alt0.1.c9102.12.0-alt0.c9.1ALT-PU-2021-1368-1264611Fixed
firefox-esrp1168.4.1-alt1115.11.0-alt1ALT-PU-2020-1013-1243925Fixed
thunderbirdsisyphus68.4.2-alt1115.9.0-alt1ALT-PU-2020-1166-1243898Fixed
thunderbirdp1068.4.2-alt1115.9.0-alt1ALT-PU-2020-1166-1243898Fixed
thunderbirdp968.6.0-alt1102.11.0-alt0.c9.1ALT-PU-2020-1515-1245787Fixed
thunderbirdc10f168.4.2-alt1115.9.0-alt0.c10.1ALT-PU-2020-1166-1243898Fixed
thunderbirdc9f268.6.0-alt1102.11.0-alt0.c9.1ALT-PU-2020-1515-1245787Fixed
thunderbirdp1168.4.2-alt1115.9.0-alt1ALT-PU-2020-1166-1243898Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1602843
  • Permissions Required
https://www.mozilla.org/security/advisories/mfsa2020-01/
  • Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2020-02/
  • Vendor Advisory
20200109 [SECURITY] [DSA 4600-1] firefox-esr security update
  • Mailing List
  • Third Party Advisory
[debian-lts-announce] 20200109 [SECURITY] [DLA 2061-1] firefox-esr security update
  • Mailing List
  • Third Party Advisory
DSA-4600
  • Third Party Advisory
USN-4234-1
  • Third Party Advisory
20200112 [slackware-security] mozilla-thunderbird (SSA:2020-010-01)
  • Mailing List
  • Third Party Advisory
RHSA-2020:0086
  • Third Party Advisory
RHSA-2020:0085
  • Third Party Advisory
http://packetstormsecurity.com/files/155912/Slackware-Security-Advisory-mozilla-thunderbird-Updates.html
    RHSA-2020:0111
      openSUSE-SU-2020:0060
        RHSA-2020:0123
          RHSA-2020:0120
            RHSA-2020:0127
              USN-4241-1
                DSA-4603
                  20200120 [SECURITY] [DSA 4603-1] thunderbird security update
                    [debian-lts-announce] 20200120 [SECURITY] [DLA 2071-1] thunderbird security update
                      openSUSE-SU-2020:0094
                        RHSA-2020:0295
                          RHSA-2020:0292
                            GLSA-202003-02
                              USN-4335-1

                                  1. Configuration 1

                                    cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
                                    End excliding
                                    72.0
                                    cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
                                    End excliding
                                    68.4

                                    Configuration 2

                                    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
                                    cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
                                    cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
                                    cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

                                    Configuration 3

                                    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

                                    Configuration 4

                                    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
                                    cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
                                VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                                Version: v24.5.3
                                Back to top