Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Open CVE on vendored jquery #11199

New issue
New issue
Closed
Closed
Open CVE on vendored jquery#11199
Labels
Release criticalFor bugs that make the library unusable (segfaults, incorrect plots, etc) and major regressions.
Milestone
 
v2.2.4
@msarahan

Description

@msarahan
msarahan
opened on May 8, 2018

Bug report

Bug summary

Your vendored jquery is old and has a known security vulnerability, https://nvd.nist.gov/vuln/detail/CVE-2016-7103

Code for reproduction

Look at https://github.com/matplotlib/matplotlib/blob/master/lib/matplotlib/backends/web_backend/jquery/js/jquery-1.11.3.js

Humble request

Please update your vendored jquery.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Release criticalFor bugs that make the library unusable (segfaults, incorrect plots, etc) and major regressions.

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions