-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3529-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Utkarsh Gupta August 15, 2023 https://wiki.debian.org/LTS - -----------------------------------------------------------------------
Package : datatables.js Version : 1.10.19+dfsg-1+deb10u1 CVE ID : CVE-2021-23445 Debian Bug : 995229 datatables.js is a jQuery plug-in that makes nice tables from different data sources. It was discovered that if an array is passed to the HTML escape entities function, it would not have its contents escaped. For Debian 10 buster, this problem has been fixed in version 1.10.19+dfsg-1+deb10u1. We recommend that you upgrade your datatables.js packages. For the detailed security status of datatables.js please refer to its security tracker page at: https://security-tracker.debian.org/tracker/datatables.js Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAmTbhxAACgkQgj6WdgbD S5bHdQ/+OcowgOPqKPQkpIFB5KN+bLSLRqXY6lpvAk1/Go5khyclVLRgVCvZnlw3 mJfZ5H7ZXD2QUAXjbxiNyF4zcLRo9oet14nFS/EJsHXM5YkmSo57SAfyw1mrpHr0 7Rj9wsHFUolbW8L2jcKfibptwqDyoOa0UbOocKp1ahUmBdD6WxLjv+Gd+4pRdylU xEQtXg1ZWhu3teVTXxpKZGYpCDgNtDhI/L0iDUhUlpyAtX+PH38SX6Jkl2Vuvs5G hzdqWVXRgRy7Lk44SSMmi9XcQUAYUW7fvOzH8BizYslNUqOMcMxeFcwNcTMEVK80 8Qs+SntZW1ZZxz9QDjVthKfLsWgOtFdSog8P3XQ0T1kInd6u8wreKzOzYNispRmy sjbAJaYoH1hWdLV6jBVTAMWu4UJeU8f8RwAr0HAMzowrQdUXI6MmCwKjZA+KKQXh JalLJxMdu2TOo/pV7y6LL0XkssqFjLMgBaZ0D2Nxr+sXMUojwKDCfiBvdicgBRQk uSzeYiIj/9NS6GgpuVe1Y5s+KrTnbvq1oof64c/+zWlrOk359qZr6tFqL65Mit/2 FrdCnPPb75dWSWL0g5r1VXqeG0hx7wb387P4D5N7UjLmigxnAyO726xnzaT7SZFp PBnb8OQMeAHl5eQB8ENZZMo+D48+CC96RY1xXBukmS/7IYsnX6o= =k6hA -----END PGP SIGNATURE-----