Information on source package dojo

Available versions

ReleaseVersion
bullseye1.15.4+dfsg1-1+deb11u1
bookworm1.17.2+dfsg1-2.1
trixie1.17.2+dfsg1-2.1
sid1.17.2+dfsg1-2.1

Resolved issues

BugDescription
TEMP-0000000-AB5257dojo can be used as a redirector
CVE-2021-23450All versions of package dojo are vulnerable to Prototype Pollution via ...
CVE-2020-5259In affected versions of dojox (NPM package), the jqMix method is vulne ...
CVE-2020-5258In affected versions of dojo (NPM package), the deepCopy method is vul ...
CVE-2020-4051In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 ...
CVE-2019-10785dojox is vulnerable to Cross-site Scripting in all versions before ver ...
CVE-2018-1000665Dojo Dojo Objective Harness (DOH) version prior to version 1.14 contai ...
CVE-2018-15494In Dojo Toolkit before 1.14, there is unescaped string injection in do ...
CVE-2018-6561dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute ...
CVE-2015-5654Cross-site scripting (XSS) vulnerability in Dojo Toolkit before 1.2 al ...
CVE-2010-2276The default configuration of the build process in Dojo 0.4.x before 0. ...
CVE-2010-2275Cross-site scripting (XSS) vulnerability in dijit/tests/_testCommon.js ...
CVE-2010-2274Multiple open redirect vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1 ...
CVE-2010-2273Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x befo ...
CVE-2010-2272Unspecified vulnerability in iframe_history.html in Dojo 0.4.x before ...

Security announcements

DSA / DLADescription
DLA-3289-1dojo - security update
DLA-2139-1dojo - security update
DLA-2127-1dojo - security update
DLA-1492-1dojo - security update

Search for package or bug name: Reporting problems