Forum OpenACS Development: Vulnerability in YUI 2.4.0 through YUI 2.8.1

Collapse
1: Vulnerability in YUI 2.4.0 through YUI 2.8.1
Posted by Michael Aram on 11/08/10 02:14 PM
Please note:

*Whether or not your site uses* the affected components, *as long as it hosts* a YUI 2 distribution between version 2.4.0 and 2.8.1 that includes these files it is affected by this vulnerability.

http://yuilibrary.com/support/2.8.2/

Regards, Michael

Collapse
2: Re: Vulnerability in YUI 2.4.0 through YUI 2.8.1 (response to 1)
Posted by Gustaf Neumann on 11/08/10 03:03 PM
The vulnerability is now fixed in the HEAD version of OpenACS (in the ajaxhelper package).