[ubuntu/oracular-security] ckeditor 4.22.1+dfsg1-2ubuntu0.24.10.1 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Thu Feb 6 00:50:03 UTC 2025
ckeditor (4.22.1+dfsg1-2ubuntu0.24.10.1) oracular-security; urgency=medium
* SECURITY UPDATE: Cross Site Scripting
- debian/patches/CVE-2024-24815.patch: Fix CDATA parsing logic
- debian/patches/CVE-2024-24816.patch: Updated samples
- CVE-2024-24815
- CVE-2024-24816
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2024-43411.patch: Use exception handling when
parsing a JSON request
- CVE-2024-43411
Date: 2025-02-05 01:42:11.993711+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/ckeditor/4.22.1+dfsg1-2ubuntu0.24.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list