[NIFI-9945] Upgrade jQuery UI - v1.12.1 To 1.13.1 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.16.0, 1.15.1, 1.15.2, 1.15.3
Fix Version/s: None
Component/s: Core Framework, Core UI
Labels:
None
Environment:
Windows, Unix

Description

NiFi uses a vulnerable version of JQuery UI, which has 3 CVEs against it.

CVE-2021-41182 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41182
CVE-2021-41183 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41183
CVE-2021-41184 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41184

The way to mitigate these CVEs would be to upgrade to JQuery UI version 1.13.1.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Mike R

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 21/Apr/22 14:54

Updated:: 09/Jun/22 13:17

Resolved:: 09/Jun/22 13:17