doxygen-1.8.14-13.el8_10
エラータID: AXSA:2025-9660:02
Doxygen can generate an online class browser (in HTML) and/or a reference manual (in LaTeX) from a set of documented source files. The documentation is extracted directly from the sources. Doxygen can also be configured to extract the code structure from undocumented source files.
Security Fix(es):
* jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods (CVE-2020-11023)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2020-11023
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
Update packages.
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing
N/A
SRPMS
- doxygen-1.8.14-13.el8_10.src.rpm
MD5: dc01e627ee6b5825122dc814f353ca9e
SHA-256: 63fe95030aa8caa16c0f476e258caef66ce088f6e43824599cb1e26337a292bf
Size: 4.96 MB
Asianux Server 8 for x86_64
- doxygen-1.8.14-13.el8_10.x86_64.rpm
MD5: 90594e271e5f52f57418135bbed25cbb
SHA-256: e0db450e86de763898aacbedc33687bd1171ce445943cd869504460b863d07f9
Size: 3.90 MB - doxygen-doxywizard-1.8.14-13.el8_10.x86_64.rpm
MD5: 0dc581a6ad3f66df9ea669e323aa5eee
SHA-256: 2bf24ffe954ee6ae0de1a2d59bd3728b0a277dd9eeb2bbf851ede6197e8b970f
Size: 303.59 kB - doxygen-latex-1.8.14-13.el8_10.x86_64.rpm
MD5: 7061c7d50d7bcbbb5602d861bea4d59b
SHA-256: 4d749ecd9e9b7f4a5d8244c9cc6c1e86e26fc7dab6bf12bd83a626a0dc61d062
Size: 21.64 kB
日本語