Mercurial > p > roundup > code
view website/wiki/static/roundup/css/print.css @ 8062:28aa76443f58
fix(security): fix CVE-2024-39124, CVE-2024-39124, and CVE-2024-39125
Directions for fixing:
* `CVE-2024-39124`_ - :ref:`classhelpers (_generic.help.html) are
vulnerable to an XSS attack. <CVE-2024-39124>` Requires fixing
tracker homes.
* `CVE-2024-39125`_ - :ref:`if Referer header is set to a script
tag, it will be executed. <CVE-2024-39125>` Fixed in release 2.4.0,
directions available for fixing in prior versions.
* `CVE-2024-39126`_ - :ref:`PDF, XML and SVG files downloaded from
an issue can contain embedded JavaScript which is
executed. <CVE-2024-39126>` Fixed in release 2.4.0, directions
available for fixing in prior versions.
prior to 2.4.0 release this weekend that fixes the last two CVE's.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Tue, 09 Jul 2024 09:07:09 -0400 |
| parents | 86c38b5aed66 |
| children |
line wrap: on
line source
/* print.css - MoinMoin Default Styles Copyright (c) 2001, 2002, 2003 by Juergen Hermann */ /* content styles */ html { font-family: Times, serif; font-size: 12pt; } body { /* Give about 3.4cm in Mozilla/Firefox and about 2.2cm in Safari */ margin: 1.5cm; } a, a:visited, a.nonexistent, a.badinterwiki { color: black; text-decoration: none; } a:hover { text-decoration: underline; } .info a { color: gray; } pre { font-size: 10pt; } a.interwiki:before, a.badinterwiki:before { content: attr(title) ":"; } a.interwiki img, a.badinterwiki img { display: none; } .footnotes div { width: 5em; border-top: 1pt solid gray; } /* user interface styles */ #header, #sidebar, #footer, #timings, #credits, #interwiki, #pagelocation { display: none; }