Fedora alert FEDORA-2016-b6cb3e83fa (js-jquery1)
| From: | updates@fedoraproject.org | |
| To: | package-announce@lists.fedoraproject.org | |
| Subject: | [SECURITY] Fedora 25 Update: js-jquery1-1.12.4-2.fc25 | |
| Date: | Thu, 29 Dec 2016 07:20:16 +0000 (UTC) | |
| Message-ID: | <20161229072016.97C5560879F6@bastion01.phx2.fedoraproject.org> |
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-b6cb3e83fa 2016-12-29 04:39:06.354745 -------------------------------------------------------------------------------- Name : js-jquery1 Product : Fedora 25 Version : 1.12.4 Release : 2.fc25 URL : https://jquery.com/ Summary : JavaScript DOM manipulation, event handling, and AJAX library Description : jQuery is a fast, small, and feature-rich JavaScript library. It makes things like HTML document traversal and manipulation, event handling, animation, and Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility, jQuery has changed the way that millions of people write JavaScript. -------------------------------------------------------------------------------- Update Information: Update to latest jquery1 stable, with backport fix for XSS vulnerability.) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307668 - js-jquery1: FTBFS in F24 https://bugzilla.redhat.com/show_bug.cgi?id=1307668 [ 2 ] Bug #1257589 - Upgrade js-jquery1 to 1.11.3 https://bugzilla.redhat.com/show_bug.cgi?id=1257589 [ 3 ] Bug #1399548 - js-jquery1: js-jquery: Cross-site scripting via cross-domain ajax requests [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1399548 [ 4 ] Bug #1399547 - js-jquery1: js-jquery: Cross-site scripting via cross-domain ajax requests [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1399547 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade js-jquery1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgr... All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org