Skip to content

Commit c9a2c02

Browse files
cziegelercziegeler
committed
FELIX-6185 : jQuery <3.4.0 is vulnerable to prototype pollution attacks. Apply patch from Dale Clarke.
This closes #204 git-svn-id: https://svn.apache.org/repos/asf/felix/trunk@1867654 13f79535-47bb-0310-9956-ffa450edef68
1 parent 4ff8c1b commit c9a2c02

12 files changed

Lines changed: 11305 additions & 14 deletions

File tree

webconsole/changelog.txt

Lines changed: 20 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,23 @@
1+
Changes in 4.3.18
2+
-----------------
3+
** Bug
4+
* [FELIX-6185] - jQuery <3.4.0 is vulnerable to prototype pollution attacks
5+
6+
7+
Changes in 4.3.16
8+
-----------------
9+
** Bug
10+
* [FELIX-6171] - Webconsole OsgiManager throws NPE
11+
* [FELIX-6172] - Already Registered Servlet Exception with WebConsole
12+
13+
14+
Changes in 4.3.14
15+
-----------------
16+
** Improvement
17+
* [FELIX-6037] - Commons FileUpload 1.4 breaks bundle uploads
18+
* [FELIX-6168] - Enable WebConsole login only after specified Security Providers are present
19+
20+
121
Changes in 4.3.12
222
-----------------
323
** Bug

webconsole/pom.xml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -168,8 +168,8 @@
168168
</includes>
169169
<excludes>
170170
<exclude>src/main/appended-resources/**</exclude>
171-
<exclude>src/main/resources/res/lib/jquery-3.3.1.js</exclude>
172-
<exclude>src/main/resources/res/lib/jquery-migrate-3.0.0.js</exclude>
171+
<exclude>src/main/resources/res/lib/jquery-3.4.1.js</exclude>
172+
<exclude>src/main/resources/res/lib/jquery-migrate-3.1.0.js</exclude>
173173
<exclude>src/main/resources/res/lib/jquery-ui-1.12.1.js</exclude>
174174
<exclude>src/main/resources/res/lib/jquery-ui-i18n-1.12.1.js</exclude>
175175
<exclude>src/main/resources/res/lib/autosize.min.js</exclude>

webconsole/src/main/appended-resources/META-INF/LICENSE

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -10,8 +10,7 @@ conditions of the following licenses.
1010

1111
For the JQuery component:
1212

13-
Copyright 2012 jQuery Foundation and other contributors
14-
http://jquery.com/
13+
Copyright JS Foundation and other contributors, https://js.foundation/
1514

1615
Permission is hereby granted, free of charge, to any person obtaining
1716
a copy of this software and associated documentation files (the

webconsole/src/main/debug-resources/res/lib/jquery-3.3.1.js

Lines changed: 0 additions & 2 deletions
This file was deleted.

0 commit comments

Comments
 (0)