[Git][security-tracker-team/security-tracker][master] openshot-qt add embed jquery-ui.js

Tue May 6 20:49:42 BST 2025


Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
85238dc6 by Bastien Roucariès at 2025-05-06T21:49:10+02:00
openshot-qt add embed jquery-ui.js

- - - - -


2 changed files:

- data/CVE/list
- data/embedded-code-copies


Changes:

=====================================
data/CVE/list
=====================================
@@ -258858,6 +258858,7 @@ CVE-2022-31160 (jQuery UI is a curated set of user interface interactions, effec
 	{DLA-3230-1}
 	- jqueryui 1.13.2+dfsg-1 (bug #1015982)
 	[bullseye] - jqueryui 1.12.1+dfsg-8+deb11u2
+	- openshot-qt <unfixed>
 	NOTE: https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9
 	NOTE: https://github.com/jquery/jquery-ui/commit/8cc5bae1caa1fcf96bf5862c5646c787020ba3f9 (1.13.2)
 CVE-2022-31159 (The AWS SDK for Java enables Java developers to work with Amazon Web S ...)
@@ -305654,6 +305655,7 @@ CVE-2021-41184 (jQuery-UI is the official jQuery user interface library. Prior t
 	- otrs2 6.3.1-1
 	[bullseye] - otrs2 <no-dsa> (Non-free not supported)
 	[stretch] - otrs2 <no-dsa> (Non-free not supported)
+	- openshot-qt
 	NOTE: https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327
 	NOTE: https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280
 	NOTE: https://www.znuny.org/en/advisories/zsa-2022-01
@@ -305663,6 +305665,7 @@ CVE-2021-41183 (jQuery-UI is the official jQuery user interface library. Prior t
 	- jqueryui 1.13.0+dfsg-1
 	[bullseye] - jqueryui 1.12.1+dfsg-8+deb11u1
 	[stretch] - jqueryui <no-dsa> (Minor issue)
+	- openshot-qt
 	- otrs2 6.3.1-1
 	[bullseye] - otrs2 <no-dsa> (Non-free not supported)
 	[stretch] - otrs2 <no-dsa> (Non-free not supported)
@@ -305677,6 +305680,7 @@ CVE-2021-41182 (jQuery-UI is the official jQuery user interface library. Prior t
 	- jqueryui 1.13.0+dfsg-1
 	[bullseye] - jqueryui 1.12.1+dfsg-8+deb11u1
 	[stretch] - jqueryui <no-dsa> (Minor issue)
+	- openshot-qt
 	- otrs2 6.3.1-1
 	[bullseye] - otrs2 <no-dsa> (Non-free not supported)
 	[stretch] - otrs2 <no-dsa> (Non-free not supported)
@@ -612645,6 +612649,7 @@ CVE-2016-7103 (Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12
 	- jqueryui 1.12.1+dfsg-1
 	[jessie] - jqueryui <no-dsa> (Minor issue)
 	[wheezy] - jqueryui <no-dsa> (Minor issue)
+	- openshot-qt
 	NOTE: https://nodesecurity.io/advisories/127
 	NOTE: https://github.com/jquery/jquery-ui/pull/1622
 	NOTE: https://github.com/jquery/jquery-ui/pull/1632


=====================================
data/embedded-code-copies
=====================================
@@ -1048,6 +1048,7 @@ jquery-goodies
 jqueryui
 	- request-tracker4 <unfixed> (embed; bug #693821)
 	- lemonldap-ng 1.4.6-3 (embed)
+	- openshot-qt <unfixed> (embed; bug #1104810)
 
 tablesorter (jquery plugin, not packaged yet)
 	- wesnoth <unfixed> (embed)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85238dc6385f5608175229792ab14c9b7e1893e5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85238dc6385f5608175229792ab14c9b7e1893e5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250506/015b91ed/attachment.htm>
