[ubuntu/focal-updates] jquery 3.3.1~dfsg-3ubuntu0.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Jan 30 16:04:33 UTC 2025
jquery (3.3.1~dfsg-3ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: code exec in DOM manipulation methods
- debian/patches/CVE-2020-11022.patch: make jQuery.htmlPrefilter an
identity function.
- CVE-2020-11022
* SECURITY UPDATE: code exec via <option> elements
- debian/patches/CVE-2020-11023.patch: skip the select wrapper for
<option> outside of IE 9.
- CVE-2020-11023
Date: 2025-01-28 13:00:10.856019+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/jquery/3.3.1~dfsg-3ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list