All errata/sisyphus_mipsel/ALT-PU-2022-4434-1
ALT-PU-2022-4434-1

Package update kiwix-lib in branch sisyphus_mipsel

Version10.1.0-alt1
Task#0
Published2022-04-02
Max severityMEDIUM
Severity:

Closed issues (1)

CVE-2022-27920
MEDIUM6.1

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0.

Published: 2022-03-25Modified: 2024-11-21
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS 3.xMEDIUM 6.1
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
References