doxygen-1.9.1-12.el9_5
エラータID: AXSA:2025-9657:01
Doxygen can generate an online class browser (in HTML) and/or a reference manual (in LaTeX) from a set of documented source files. The documentation is extracted directly from the sources. Doxygen can also be configured to extract the code structure from undocumented source files.
Security Fix(es):
* jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods (CVE-2020-11023)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2020-11023
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
Update packages.
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing
N/A
SRPMS
- doxygen-1.9.1-12.el9_5.src.rpm
MD5: 96f26ec4d7066e9c703c42b876b8f2f1
SHA-256: f6f7073b79f7fc7045514969dea40e6c9c3f555a88d550d8779f66ecdf101787
Size: 5.04 MB
Asianux Server 9 for x86_64
- doxygen-1.9.1-12.el9_5.x86_64.rpm
MD5: 3f01b5a269385624e5c7df285d46fd08
SHA-256: aac3e5236b74fc3db325a947b45b28d687f74bfeb595a94019081a39de4cd2a7
Size: 4.19 MB - doxygen-doxywizard-1.9.1-12.el9_5.x86_64.rpm
MD5: 2987137548a774db51bebf017648dffd
SHA-256: dbe1c6f6e7e7c3303595756fca3d19dede209b9d1124381722756b2861085408
Size: 297.56 kB - doxygen-latex-1.9.1-12.el9_5.x86_64.rpm
MD5: f007811167ef518f6855daa985101c5c
SHA-256: 8eeb58844a19c8a6907d2af5674cb75b603c5120a59b96904d835fe36599cc71
Size: 7.42 kB
日本語