Details
-
Type: Improvement
-
Status: Closed
-
Priority: Major
-
Resolution: Fixed
-
Affects Version/s: EE-4.3.0.GA_P02, EE-3.3.0.GA_P08
-
Fix Version/s: EE-4.3.0.GA_P03, EE-3.3.0.GA_P09
-
Component/s: ACE-Components, ICE-Components
-
Labels:None
-
Environment:ICEfaces components.
Description
The jQuery library used by ICEfaces components has known security vulnerabilities.
See https://www.cvedetails.com/vulnerability-list/vendor_id-6538/product_id-11031/Jquery-Jquery.html
This JIRA is to analyze these to determine if there is an exposure vector outside of the ICEfaces component code (via the browser) for any of these.
See https://www.cvedetails.com/vulnerability-list/vendor_id-6538/product_id-11031/Jquery-Jquery.html
This JIRA is to analyze these to determine if there is an exposure vector outside of the ICEfaces component code (via the browser) for any of these.
Activity
Ken Fyten
made changes -
Status | Resolved [ 5 ] | Closed [ 6 ] |
Arturo Zambrano
made changes -
Status | Open [ 1 ] | Resolved [ 5 ] |
Resolution | Fixed [ 1 ] |
Repository | Revision | Date | User | Message |
ICEsoft Public SVN Repository | #53383 | Fri Jul 16 18:58:56 MDT 2021 | art.zambrano | |
Files Changed | ||||
MODIFY
/icefaces4/trunk/icefaces/ace/component/resources/icefaces.ace/jquery/ui/readme.txt
MODIFY /icefaces4/trunk/icefaces/ace/component/resources/icefaces.ace/jquery/readme.txt |
Ken Fyten
made changes -
Assignee | Arturo Zambrano [ artzambrano ] |
Ken Fyten
made changes -
Field | Original Value | New Value |
---|---|---|
Fix Version/s | EE-4.3.0.GA_P03 [ 13570 ] | |
Fix Version/s | EE-3.3.0.GA_P09 [ 13781 ] |
Ken Fyten
created issue -
More detailed information can be found in this wiki article:
http://www.icesoft.org/wiki/display/ICE/jQuery+Security+Vulnerability+Mitigation