Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Open CVE on vendored jquery #11199

Closed
Closed
@msarahan

Description

@msarahan

Bug report

Bug summary

Your vendored jquery is old and has a known security vulnerability, https://nvd.nist.gov/vuln/detail/CVE-2016-7103

Code for reproduction

Look at https://github.com/matplotlib/matplotlib/blob/master/lib/matplotlib/backends/web_backend/jquery/js/jquery-1.11.3.js

Humble request

Please update your vendored jquery.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Release criticalFor bugs that make the library unusable (segfaults, incorrect plots, etc) and major regressions.

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions