UbuntuUpdates.org

Bugs fixes in "ruby2.5"

Origin Bug number Title Date fixed
CVE CVE-2015-9251 jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, ca 2019-10-08
CVE CVE-2012-6708 jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in 2019-10-08
CVE CVE-2019-16201 RESERVED 2019-10-08
CVE CVE-2019-15845 RESERVED 2019-10-08
CVE CVE-2019-16254 RESERVED 2019-10-08
CVE CVE-2019-16255 RESERVED 2019-10-08
CVE CVE-2015-9251 jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, ca 2019-10-03
CVE CVE-2012-6708 jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in 2019-10-03
CVE CVE-2019-16201 RESERVED 2019-10-03
CVE CVE-2019-15845 RESERVED 2019-10-03
CVE CVE-2019-16254 RESERVED 2019-10-03
CVE CVE-2019-16255 RESERVED 2019-10-03
Launchpad 1835968 Regression in backported patch for openssl 1.1 2019-08-20
Launchpad 1835968 Regression in backported patch for openssl 1.1 2019-08-19
Launchpad 1835968 Regression in backported patch for openssl 1.1 2019-08-01
CVE CVE-2019-8325 Escape sequence injection vulnerability in errors 2019-04-13
CVE CVE-2019-8324 Installing a malicious gem may lead to arbitrary code execution 2019-04-13
CVE CVE-2019-8323 Escape sequence injection vulnerability in API response handling 2019-04-13
CVE CVE-2019-8322 Escape sequence injection vulnerability in gem owner 2019-04-13
CVE CVE-2019-8321 Escape sequence injection vulnerability in verbose 2019-04-13



About   -   Send Feedback to @ubuntu_updates