The Wayback Machine - https://web.archive.org/web/20220222020949/https://github.com/doxygen/doxygen/issues/8616
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade jQuery to latest 3.5 or 3.6 release to get rid of security issues. #8616

Closed
LaurenceL opened this issue Jun 23, 2021 · 2 comments
Closed

Upgrade jQuery to latest 3.5 or 3.6 release to get rid of security issues. #8616

LaurenceL opened this issue Jun 23, 2021 · 2 comments
Labels
enhancement HTML

Comments

@LaurenceL
Copy link

@LaurenceL LaurenceL commented Jun 23, 2021

In the latest Doxygen release (1.9.1), the jquery version used is 3.4.1. This version contains two security issue:

jquery have released 3.5.1 to fix it (https://blog.jquery.com/2020/05/04/jquery-3-5-1-released-fixing-a-regression/).

If upgrading to 3.5.x (or 3.6) is too complicated, there is a patch for 3.4.1 that can be applied. See https://github.com/DanielRuf/snyk-js-jquery-565129
doxygen added a commit that referenced this issue Jun 27, 2021
@doxygen
issue #8616: Upgrade jQuery to latest 3.5 or 3.6 release to get rid o…
53f2a06 
…f security issues.
@doxygen
Copy link
Owner

@doxygen doxygen commented Jun 27, 2021

I've upgraded jquery to 3.6.0 with the latest commit.

ralexe added a commit to ralexe/doxygen that referenced this issue Jul 3, 2021
@doxygen @ralexe
issue doxygen#8616: Upgrade jQuery to latest 3.5 or 3.6 release to ge…
b352081 
…t rid of security issues.
@doxygen
Copy link
Owner

@doxygen doxygen commented Aug 18, 2021

This issue was previously marked 'fixed but not released',
which means it should be fixed in doxygen version 1.9.2.
Please verify if this is indeed the case. Reopen the
issue if you think it is not fixed and please include any additional information
that you think can be relevant (preferably in the form of a self-contained example).

@doxygen doxygen closed this Aug 18, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement HTML
Projects
None yet
Milestone
No milestone
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
3 participants
@doxygen @LaurenceL @albert-github