yahoo-eng-team team mailing list archive

Thread
Date

[Bug 2070440] [NEW] Update XStatic-jquery-ui to 1.13.0.1 to Address CVE-2021-41182

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Vishal Manchanda <2070440@xxxxxxxxxxxxxxxxxx>
Date: Wed, 26 Jun 2024 06:42:27 -0000
Reply-to: Bug 2070440 <2070440@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

Public bug reported:

Horizon is currently using XStatic-jquery-ui version 1.12.1.1, which is
affected by a security vulnerability (CVE-2021-41182). It is recommended
to update to version 1.13.0.1, which includes the fix for this issue
[1].

[1] https://nvd.nist.gov/vuln/detail/CVE-2021-41182

** Affects: horizon
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/2070440

Title:
  Update XStatic-jquery-ui to 1.13.0.1 to Address CVE-2021-41182

Status in OpenStack Dashboard (Horizon):
  New

Bug description:
  Horizon is currently using XStatic-jquery-ui version 1.12.1.1, which
  is affected by a security vulnerability (CVE-2021-41182). It is
  recommended to update to version 1.13.0.1, which includes the fix for
  this issue [1].

  [1] https://nvd.nist.gov/vuln/detail/CVE-2021-41182

To manage notifications about this bug go to:
https://bugs.launchpad.net/horizon/+bug/2070440/+subscriptions