Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Ubuntu 22.04 LTS USN-7569-1 critical: Dojo security issues

ubuntu
Calendar Grey June 16, 2025
Dist Ubuntu Esm H88
Explore the recent Ubuntu USN-7569-1 release that tackles vulnerabilities in Dojo and offers essential patches for enhanced security measures.
Several security issues were fixed in Dojo.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in Dojo. Software Description: - dojo: Modular JavaScript library Details: It was discovered that Dojo did not correctly handle DataGrids. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2018-15494) It was discovered that Dojo was vulnerable to prototype pollution. An attacker could possibly use this issue to execute arbitrary code. (CVE-2021-23450) Jonathan Leitschuh discovered that Dojo did not correctly sanitize certain inputs. An attacker could possibly use this issue to execute a cross-site scripting (XSS) attack. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2019-10785, CVE-2020-4051)

Topics%20covered

Topics Covered

security advisory arbitrary code execution important software issue ubuntu dojo

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS libjs-dojo-core 1.15.4+dfsg1-1ubuntu0.1 libjs-dojo-dijit 1.15.4+dfsg1-1ubuntu0.1 libjs-dojo-dojox 1.15.4+dfsg1-1ubuntu0.1 shrinksafe 1.15.4+dfsg1-1ubuntu0.1 Ubuntu 20.04 LTS libjs-dojo-core 1.15.0+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro libjs-dojo-dijit 1.15.0+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro libjs-dojo-dojox 1.15.0+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro shrinksafe 1.15.0+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS libjs-dojo-core 1.10.4+dfsg-2ubuntu0.1~esm1 Available with Ubuntu Pro libjs-dojo-dijit 1.10.4+dfsg-2ubuntu0.1~esm1 Available with Ubuntu Pro libjs-dojo-dojox 1.10.4+dfsg-2ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7569-1

CVE-2018-15494, CVE-2019-10785, CVE-2020-4051, CVE-2021-23450

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7569-1

Topics%20covered

Topics Covered

security advisory arbitrary code execution important software issue ubuntu dojo

Package Information

https://launchpad.net/ubuntu/+source/dojo/1.15.4+dfsg1-1ubuntu0.1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here