You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa js-jquery1

Sigurnosni nedostaci programskog paketa js-jquery1

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2016-12-29 04:39:06.354745

Name : js-jquery1
Product : Fedora 25
Version : 1.12.4
Release : 2.fc25
Summary : JavaScript DOM manipulation, event handling, and AJAX library
Description :
jQuery is a fast, small, and feature-rich JavaScript library. It makes things
like HTML document traversal and manipulation, event handling, animation, and
Ajax much simpler with an easy-to-use API that works across a multitude of
browsers. With a combination of versatility and extensibility, jQuery has
changed the way that millions of people write JavaScript.

Update Information:

Update to latest jquery1 stable, with backport fix for XSS vulnerability.)

[ 1 ] Bug #1307668 – js-jquery1: FTBFS in F24
[ 2 ] Bug #1257589 – Upgrade js-jquery1 to 1.11.3
[ 3 ] Bug #1399548 – js-jquery1: js-jquery: Cross-site scripting via cross-domain ajax requests [epel-7]
[ 4 ] Bug #1399547 – js-jquery1: js-jquery: Cross-site scripting via cross-domain ajax requests [fedora-all]

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade js-jquery1’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorVlatka Misic
Cert idNCERT-REF-2016-12-0076-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa curl

Otkriven je sigurnosni nedostatak u implementaciji funkcije printf() unutar programske biblioteke libcurl. Otkriveni nedostatak manifestira se prepisivanjem spremnika kada je...