It was discovered that jQuery UI did not properly validate the values from untrusted sources. An attacker could use this vulnerability to cause a crash or possibly execute arbitrary code. This issue affected only Ubuntu 18.04 ESM and Ubuntu 20.4 ESM. (CVE-2021-41184)
It was discovered that jQuery UI checkboxradio widget did not properly decode certain values from HTML entities. An attacker could possibly use this issue to generate a cross-site scripting(XSS) attack, resulting in a crash or possibly execute arbitrary code. (CVE-2022-31160)
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_version": "1.12.1+dfsg-5ubuntu0.18.04.1~esm2", "binary_name": "libjs-jquery-ui" }, { "binary_version": "1.12.1+dfsg-5ubuntu0.18.04.1~esm2", "binary_name": "libjs-jquery-ui-docs" }, { "binary_version": "1.12.1+dfsg-5ubuntu0.18.04.1~esm2", "binary_name": "node-jquery-ui" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_version": "1.12.1+dfsg-5ubuntu0.20.04.1~esm3", "binary_name": "libjs-jquery-ui" }, { "binary_version": "1.12.1+dfsg-5ubuntu0.20.04.1~esm3", "binary_name": "libjs-jquery-ui-docs" }, { "binary_version": "1.12.1+dfsg-5ubuntu0.20.04.1~esm3", "binary_name": "node-jquery-ui" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_version": "1.13.1+dfsg-1ubuntu0.1~esm1", "binary_name": "libjs-jquery-ui" }, { "binary_version": "1.13.1+dfsg-1ubuntu0.1~esm1", "binary_name": "libjs-jquery-ui-docs" }, { "binary_version": "1.13.1+dfsg-1ubuntu0.1~esm1", "binary_name": "node-jquery-ui" } ] }