From d155fe8c1abf44f17ffb29011f73b9873b032b51 Mon Sep 17 00:00:00 2001
From: Tristan Cacqueray <tdecacqu@redhat.com>
Date: Wed, 15 Jun 2016 11:11:13 -0400
Subject: [PATCH] Adds OSSA-2016-010 (CVE-2016-4428)

Change-Id: I682d36be196502568c64e8f2142d4555cdc1b0be
Related-Bug: #1567673
---
 ossa/OSSA-2016-010.yaml | 50 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 50 insertions(+)
 create mode 100644 ossa/OSSA-2016-010.yaml

diff --git a/ossa/OSSA-2016-010.yaml b/ossa/OSSA-2016-010.yaml
new file mode 100644
index 0000000..917b9cc
--- /dev/null
+++ b/ossa/OSSA-2016-010.yaml
@@ -0,0 +1,50 @@
+date: 2016-06-15
+
+id: OSSA-2016-010
+
+title: 'XSS in Horizon client side template'
+
+description: 'Beth Lancaster and Brandon Sawyers from Virginia Tech reported a
+    vulnerability in Horizon. By injecting Angularjs template in dashboard forms,
+    such as image''s description, an authenticated user may trigger a
+    cross-site-scripting vulnerability when another user browses the affected pages.
+    It may result in potential assets theft like user access credentials.
+    All Horizon setups are affected.'
+
+affected-products:
+
+  - product: horizon
+    version: "<=8.0.1, >=9.0.0 <=9.0.1"
+
+vulnerabilities:
+
+  - cve-id: CVE-2016-4428
+
+reporters:
+
+  - name: 'Beth Lancaster'
+    affiliation: Virginia Tech
+    reported:
+      - CVE-2016-4428
+
+  - name: 'Brandon Sawyers'
+    affiliation: Virginia Tech
+    reported:
+      - CVE-2016-4428
+
+issues:
+  links:
+    - https://bugs.launchpad.net/bugs/1567673
+
+reviews:
+
+  newton:
+    - https://review.openstack.org/329998
+
+  mitaka:
+    - https://review.openstack.org/329996
+
+  liberty:
+    - https://review.openstack.org/329997
+
+  type: gerrit