ckeditor 4.16.0+dfsg-2ubuntu0.1 source package in Ubuntu
Changelog
ckeditor (4.16.0+dfsg-2ubuntu0.1) impish-security; urgency=medium
* SECURITY UPDATE: code injection in clipboard plugin with undo feature
- debian/patches/CVE-2021-32808.patch: add specific functionality for
widget handler filtering in plugins/widget/plugin.js and
core/htmlparser.js.
- CVE-2021-32808
* SECURITY UPDATE: HTML injection in clipboard plugin
- debian/patches/CVE-2021-32809.patch: clean unwanted characters and
tags from clipboard data in plugins/clipboard/plugin.js
- CVE-2021-32809
* SECURITY UPDATE: code injection through fake objects.
- debian/patches/CVE-2021-37695.patch: perform filtering over the
content used to restore real element in fakeobjects/plugin.js.
- CVE-2021-37695
-- David Fernandez Gonzalez <email address hidden> Mon, 21 Mar 2022 15:31:28 +0100
Upload details
- Uploaded by:
- David Fernandez Gonzalez
- Uploaded to:
- Impish
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- javascript
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ckeditor_4.16.0+dfsg.orig.tar.xz | 20.7 MiB | 0fd48a76fa4fbcfb45b2d79d71dc6a257ee42e6756564eda63e70d0cef4346d6 |
| ckeditor_4.16.0+dfsg-2ubuntu0.1.debian.tar.xz | 13.5 KiB | b2d9ff660ed7e1d55cf7077aadd9c241211258a92b014d79145e87a30aa9706f |
| ckeditor_4.16.0+dfsg-2ubuntu0.1.dsc | 2.0 KiB | a03f6eaf39e9f0e373320db162003c20a2a038d71d9012bc23c4093fef790f3e |
Available diffs
Binary packages built by this source
- ckeditor: No summary available for ckeditor in ubuntu impish.
No description available for ckeditor in ubuntu impish.
