Debian 9807 Published by

A datatables.js security update has been released for Debian GNU/Linux 9 Extended LTS to address an issue with the HTML escape entities function.



ELA-920-1 datatables.js security update

Package : datatables.js
Version : 1.10.13+dfsg-2+deb9u1 (stretch)

Related CVEs :
CVE-2021-23445

datatables.js is a jQuery plug-in that makes nice tables from different
data sources.
It was discovered that if an array is passed to the HTML escape entities
function, it would not have its contents escaped.

ELA-920-1 datatables.js security update