Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from * before 1.39.14, 1.43.4, 1.44.1.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 14 | | =1:1.43.3+dfsg-1 || >=0 <1:1.43.5+dfsg-1 | 1:1.43.5+dfsg-1 |
debian 11 | | =1:1.35.11-1~deb11u1 || =1:1.35.13-1+deb11u2 || =1:1.35.13-1+deb11u3 || =1:1.35.13-1+deb11u4 || =1:1.35.13-1~deb11u1 || =1:1.35.2-1 || =1:1.35.3-1 || =1:1.35.4-1 || =1:1.35.4-1+deb11u2 || =1:1.35.4-1~deb11u1 || =1:1.35.5-1 || =1:1.35.5-2 || =1:1.35.6-1 || =1:1.35.7-1 || =1:1.35.8-1 || =1:1.35.8-1.1 || =1:1.35.8-1~deb11u1 || >=0 <1:1.35.13-1+deb11u5 | 1:1.35.13-1+deb11u5 |
debian 12 | | =1:1.39.10-1 || =1:1.39.10-1~deb12u1 || =1:1.39.12-1~deb12u1 || =1:1.39.13-1~deb12u1 || =1:1.39.2-1 || =1:1.39.4-1 || =1:1.39.4-1~deb12u1 || =1:1.39.4-2 || =1:1.39.5-1 || =1:1.39.5-1~deb12u1 || =1:1.39.6-1 || =1:1.39.7-1 || =1:1.39.7-1~deb12u1 || =1:1.39.8-1 || >=0 <1:1.39.17-1~deb12u1 | 1:1.39.17-1~deb12u1 |
debian 13 | | =1:1.43.3+dfsg-1 || =1:1.43.5+dfsg-1 || >=0 <1:1.43.6+dfsg-1~deb13u1 | 1:1.43.6+dfsg-1~deb13u1 |
