tiistai 8. maaliskuuta 2016 14.55.23 UTC+2 Ilja Sidoroff kirjoitti: > > At routine system scan by our IT department noticed, that mirage theme > uses jQuery version 1.6.2, which is vulnerable to a XSS attack [1]. I don't > know if this actually exploitable in DSpace, but anyway it seems that this > is fixable by simple bumping the version to 1.6.4. Is it worth of making a > pull request to fix this? > > Ilja Sidoroff > Information Specialist > University of Eastern Finland, Library > > [1] CVE-2011-4969 > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4969 >
-- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech+unsubscr...@googlegroups.com. To post to this group, send email to dspace-tech@googlegroups.com. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout.
