UbuntuUpdates.org

Package "jqueryui"

Name: jqueryui

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • JavaScript UI library for dynamic web applications
  • Documentation for JQuery-UI
  • JavaScript UI library for dynamic web applications (NodeJs)
Latest version: 1.12.1+dfsg-5ubuntu0.20.04.1
Release: focal (20.04)
Level: security
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "jqueryui" in Focal

Repository Area Version
base universe 1.12.1+dfsg-5
updates universe 1.12.1+dfsg-5ubuntu0.20.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.12.1+dfsg-5ubuntu0.20.04.1 2023-10-05 12:11:49 UTC

  jqueryui (1.12.1+dfsg-5ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: Improper input validation
    - debian/patches/CVE-2021-41182.patch: Datepicker: Make sure altField is
    treated as a CSS selector
    - debian/patches/CVE-2021-41183.patch: Datepicker: Make sure text option
    are text, shorten HTML strings
    - FTBFS: fix override_dh_auto_test failing in debian/rules
    - CVE-2021-41182
    - CVE-2021-41183

  * SECURITY UPDATE: Improper input validation
    - debian/patches/CVE-2022-31160.patch: Fix checkboxradio widget having an
    HTML-like initial text label
    - FTBFS: fix override_dh_auto_test failing in debian/rules
    - CVE-2022-31160

  * SECURITY UPDATE: Improper input validation
    - debian/patches/CVE-2021-41184.patch: Position: Make sure `of` is
    treated as a CSS selector
    - CVE-2021-41184

 -- Nick Galanis <email address hidden> Tue, 03 Oct 2023 18:06:31 +0100
CVE-2021-41182 jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widg
CVE-2021-41183 jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker wi
CVE-2022-31160 jQuery UI is a curated set of user interface interactions, effects, widgets, and themes built on top of jQuery. Versions prior to 1.13.2 are potentia
CVE-2021-41184 jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util fr


About   -   Send Feedback to @ubuntu_updates