Skip to content

Commit 2f2879d

Browse files
maximthomasvharseko
maximthomas
and
vharseko
authored
CVE-2024-38999 requirejs v2.3.6 was discovered to contain a prototype pollution (#128)
Co-authored-by: Valery Kharseko <[email protected]>
1 parent 56d9abd commit 2f2879d

File tree

3 files changed

+5
-5
lines changed

3 files changed

+5
-5
lines changed

openig-ui/src/main/resources/index.html

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@
2424
<div id="dialogs"></div>
2525
<footer id="footer" class="footer text-muted"></footer>
2626

27-
<script data-main="main" src="libs/requirejs-2.1.14-min.js"></script>
27+
<script data-main="main" src="libs/requirejs-2.3.7-min.js"></script>
2828

2929
</body>
3030

openig-ui/src/test/resources/qunit.html

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,6 +27,6 @@
2727
<script src="libs/qunit-1.15.0.js"></script>
2828
<script>QUnit.config.autostart = false;</script>
2929

30-
<script data-main="config" src="../www/libs/requirejs-2.1.14-min.js"></script>
30+
<script data-main="config" src="../www/libs/requirejs-2.3.7-min.js"></script>
3131
</body>
3232
</html>

pom.xml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -261,7 +261,7 @@
261261
<artifactItem>
262262
<groupId>org.openidentityplatform.commons.ui.libs</groupId>
263263
<artifactId>requirejs</artifactId>
264-
<version>2.1.14</version>
264+
<version>2.3.7</version>
265265
<classifier>min</classifier>
266266
<packaging>js</packaging>
267267
<downloadUrl>https://cdnjs.cloudflare.com/ajax/libs/require.js/{version}/require.{classifier}.{packaging}</downloadUrl>
@@ -535,7 +535,7 @@
535535
<artifactItem>
536536
<groupId>org.openidentityplatform.commons.ui.libs</groupId>
537537
<artifactId>requirejs</artifactId>
538-
<version>2.1.14</version>
538+
<version>2.3.7</version>
539539
<classifier>min</classifier>
540540
<packaging>js</packaging>
541541
<downloadUrl>https://cdnjs.cloudflare.com/ajax/libs/require.js/{version}/require.{classifier}.{packaging}</downloadUrl>
@@ -1083,7 +1083,7 @@
10831083
<dependency>
10841084
<groupId>org.openidentityplatform.openam</groupId>
10851085
<artifactId>openam</artifactId>
1086-
<version>15.2.0</version>
1086+
<version>15.2.2</version>
10871087
<type>pom</type>
10881088
<scope>import</scope>
10891089
</dependency>

0 commit comments

Comments
 (0)