jQuery Vulnerability Repaired for Ubuntu 11.10 and Ubuntu 10.04 LTS

Just update the operating system in order to fix the problem

By on February 14th, 2013 19:01 GMT

On February 13, Canonical published in a security notice details about a jQuery vulnerability for its Ubuntu 11.10, and Ubuntu 10.04 LTS operating systems.

According to Canonical, jQuery could be made to expose sensitive information over the network.

It was discovered that jQuery incorrectly handled selecting elements using location.hash, resulting in a possible cross-site scripting (XSS) issue.

With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.

The security flaws can be fixed if you upgrade your system(s) to the latest libjs-jquery package, specific to each distribution. To apply the update, run the Update Manager application.

In general, a standard system update will make all the necessary changes. A system restart will not be necessary to implement the changes.

Comments